How to remove h5native.exe
- File Details
- Overview
- Analysis
h5native.exe
The module h5native.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
99cff7272d13852834e660c6b7f278de |
| Size: |
479 KB |
| First Published: |
2018-12-05 16:06:55 (6 years ago) |
| Latest Published: |
2021-07-18 20:53:46 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-07-18 20:53:46 (4 years ago) |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
|
36.4% |
|
|
22.7% |
|
|
18.2% |
|
|
13.6% |
|
|
4.5% |
|
|
4.5% |
|
| Windows 10 |
56.5% |
|
| Windows 7 |
34.8% |
|
| Windows 8.1 |
8.7% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00038f22 |
| Name |
Size of data |
MD5 |
| .text |
386560 |
8a82f0fe928722c2811fc46e9a82ed3c |
| .rdata |
79872 |
045f40bf3200281f2f3e3f46c39eb775 |
| .data |
5120 |
e9103f7adb1967c0dfca8e9fb34345b0 |
| .gfids |
1024 |
cbcdc9b711590dd059e53ff5108221d2 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
1536 |
e2c835fc31ad142c69dbd2eb9c4dfd89 |
| .reloc |
15360 |
72d3867f4a484f6d2cc37ce494a1a252 |
