How to remove driver.exe
driver.exe
The module driver.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | XMR |
| Company Name: | www.hp.com |
| MD5: | 4fa26d84d8bbcb38537fefc1100cc28f |
| Size: | 769 KB |
| First Published: | 2018-07-14 12:06:54 (6 years ago) |
| Latest Published: | 2019-07-27 16:47:12 (5 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2019-07-27 16:47:12 (5 years ago) |
Common Places:
| %sysdrive%\downloads\telechargement bittorrent\iobit driver booster 5 rc pro (v5.0.2.1) multi.rar\iobit driver booster 5 rc pro (v5.0.2.1) multi\appdata |
| %windir% |
| %sysdrive%\contenu\logiciels\logiciels de téléchargement\vso downloader ultimate\vso downloader ultimate 5.0.1.49 [patch].rar\vso downloader ultimate 5.0.1.49 + patch\appdata |
| %sysdrive%\....\\....\hidefolder\hide_pro\software\file manip\file copier\teracopy_pro_v3.2_portable.rar\teracopy_pro_v3.2_portable\appdata |
| %sysdrive%\software 2017\adobe acrobat pro dc 2017.012.20095 setup + crack\adobe cc universal patcher 1.5.rar\adobe cc 2015 universal patcher 1.5\appdata |
| %sysdrive%\telechargement\tomabo youtube video downloader pro.v3.7.10.incl keygen et patch.rar\tomabo youtube video downloader pro v3.7.10. incl + keygen & patch |
| %sysdrive%\utilitaires\m.à j. pilote\iobit driver booster pro\appdata |
| %sysdrive%\téléchargements\kmsauto lite 1.3.2 + portable.rar\km.1.3.2.lite |
| %sysdrive%\programmes\whatsapp.for.pc.(windows_x64_10-7-8-8 1-xp) 2017\whatsapp.for.pc.(windows_10-7-8-8 1-xp) 2017 final for computer\appdata |
Geography:
| 44.4% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% |
OS Version:
| Windows 10 | 66.7% | |
| Windows 7 | 33.3% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000000400000 |
| Entry Address: | 0x00001500 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 409088 | 02284afa02d2e527be9f78250388a3b8 |
| .data | 1536 | 64739773293be74c800201b849337802 |
| .rdata | 56832 | e494fb15165ac618c1f7892da11b1bb7 |
| .pdata | 16384 | 95a42d9b317492751869b02ef8a58047 |
| .xdata | 15360 | 753dbdf5fa2b7422f3a047403ff6c65a |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 11776 | 270499ddf1aa80442b80aa80d7b52004 |
| .CRT | 512 | 119e696cf0e7e6f0172c72d5a62186d8 |
| .tls | 512 | 811d648549920a84e64d44b5999ecc21 |
| .rsrc | 274944 | a51336829ca7745e6f584d045e7c6046 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for driver.exe
