How to remove etw.exe
etw.exe
The module etw.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | Microsoft® Windows® Operating System |
| Company Name: | Microsoft Corporation |
| MD5: | 6baa12adc249d90aac869d7e53f4b97b |
| Size: | 9 MB |
| First Published: | 2022-11-23 23:08:47 (2 years ago) |
| Latest Published: | 2025-05-14 23:00:59 (2 months ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2025-05-14 23:00:59 (2 months ago) |
Common Places:
| %windir%\ime |
| %windir%\ime |
| %windir%\ime |
| %commonappdata%\dell\saremediation\systemrepair\snapshots |
| %windir%\ime |
| %windir%\ime |
| %windir%\ime |
| %windir%\ime |
| %windir%\ime |
| %windir%\ime |
Geography:
| 40.0% | ||
| 20.0% | ||
| 10.0% | ||
| 10.0% | ||
| 10.0% | ||
| 10.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | |
| Entry Address: |
.NET Info:
| MVID: | 1d309d53-fb9b-454d-a3ed-1e2233d1584e |
PE Sections:
| Name | Size of data | MD5 |
| .text | 10030080 | 304386a7f44bf91ca658e3c143d0402f |
| .rsrc | 4608 | 886c8f5b15a5d717ce7e71c1ada048e1 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for etw.exe
