How to remove g18B2.tmp.exe

» File
File Details
Overview
Analysis

g18B2.tmp.exe

The module g18B2.tmp.exe has been detected as Trojan.CoinMiner

g18B2.tmp.exe

Remove g18B2.tmp.exe

File Details

Main Info:

MD5:	91c036b0ef5d6a4e921d87b08773ff2e
Size:	1 MB
First Published:	2019-11-04 11:33:52 (4 years ago)
Latest Published:	2019-11-13 20:36:43 (4 years ago)

Analysis:

Status:	Trojan.CoinMiner (on last analysis)
Analysis Date:	2019-11-13 20:36:43 (4 years ago)

Common Places:

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

Geography:

	21.1%
	14.0%
	10.5%
	10.5%
	10.5%
	7.0%
	5.3%
	5.3%
	3.5%
	3.5%
	1.8%
	1.8%
	1.8%
	1.8%
	1.8%

OS Version:

Windows 10	78.3%
Windows 7	21.7%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x000b5ce4

PE Sections:

Name	Size of data	MD5
.text	941056	74155ad54b108d7725160d4eb4b6e49e
.data	6656	4920f00a71de5271a6e4476fb420de61
.rdata	126464	1cf256aaf54c39b27b0270b5d2c05603
.data	9216	aa883fe8037dfbb5e4bc14caedc3bcae
.pdata	27648	0137ed651374b8eebe619b66b710ac9c
_RDATA	512	c6f8adc8bf3c72dd0883336938e72c69
.rsrc	512	da9e8769aa702da1ca0713d6a0336d18
.reloc	5120	33b96fd0c1e83984216dfbc628c97a91

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for g18B2.tmp.exe

copyright for information about g18B2.tmp.exe