How to remove file[1].exe
- File Details
- Overview
- Analysis
file[1].exe
The module file[1].exe has been detected as Trojan.CoinMiner
File Details
MD5: |
2444dda790ad1559a9dd86055245dc33 |
Size: |
949 KB |
First Published: |
2018-02-13 18:04:59 (6 years ago) |
Latest Published: |
2018-02-13 19:12:39 (6 years ago) |
Status: |
Trojan.CoinMiner (on last analysis) |
|
Analysis Date: |
2018-02-13 19:12:39 (6 years ago) |
%appdata% |
%localappdata%\microsoft\windows\inetcache\ie |
AMDProcess.exe |
file[1].exe |
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x00066734 |
Name |
Size of data |
MD5 |
.text |
707584 |
2f1b474b740bb7d72d4dac2cf7e8a90b |
.rdata |
209408 |
e871db2bc0aecbbb60239598b826c2f1 |
.data |
14336 |
4578d33a08dd3835abf7d0d7434dfe38 |
.gfids |
4608 |
95b6abed3390eff0abfd371307a8d105 |
.tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
.rsrc |
512 |
f37c92073830d3286a2236a65c726616 |
.reloc |
33792 |
0f31c4cf47c76db5fcd5879a6dd43a8b |