How to remove iexplorer.exe
- File Details
- Overview
- Analysis
iexplorer.exe
The module iexplorer.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
e6ccac0c455793aa2e9f84a7ac09d5e2 |
| Size: |
883 KB |
| First Published: |
2018-03-28 03:08:38 (7 years ago) |
| Latest Published: |
2021-03-04 04:39:18 (4 years ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-03-04 04:39:18 (4 years ago) |
| %windir%\fonts |
| %windir% |
| %windir%\pla |
| %commonappdata% |
| %windir%\debug |
| %profile% |
| %profile%\downloads |
| %programfiles%\worldmining miner\bin |
| %appdata%\wmminer111\bin |
| %windir%\vss\writers |
| win1ogins.exe |
| iexplorer.exe |
| csrss.exe |
| SearchIndexer.exe |
| win1ogon.exe |
| windows.exe |
| cpuminer.exe |
| svchost.exe |
| xmrig.exe |
| Crss.exe |
| xmrig.dll |
| lsass4.exe |
| xe.exe |
| teamcan.exe |
| teams.exe |
| status.exe |
| explores.exe |
| phpmyadmin.exe |
| conhost.exe |
| lsass4-----.exe |
| $RF8J4QE.exe |
|
43.6% |
|
|
12.9% |
|
|
12.1% |
|
|
8.6% |
|
|
5.0% |
|
|
3.6% |
|
|
2.9% |
|
|
1.4% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
| Windows Server 2012 R2 |
30.1% |
|
| Windows Server 2008 R2 |
27.3% |
|
| Windows 7 |
16.1% |
|
| Windows 10 |
16.1% |
|
| Windows Server 2012 |
6.3% |
|
| Windows 8.1 |
2.1% |
|
| Windows Server 2016 |
2.1% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x000014e0 |
| Name |
Size of data |
MD5 |
| .text |
733184 |
fd2dce151c660e039d9262465cc619f3 |
| .data |
1536 |
262a240dd7f5f3c9368c2eca044c1745 |
| .rdata |
82432 |
08c41e9a4a36f6b3af0cc5868c1407eb |
| .pdata |
23552 |
3c3c32332e626faa5c309b2f08388695 |
| .xdata |
22016 |
78440bcb9717364ee0b2ea7e6de988af |
| .bss |
0 |
00000000000000000000000000000000 |
| .edata |
1536 |
7c60322f3979a13e7d527a770bf159ba |
| .idata |
12288 |
c8158db09e2491fa4db493da14ef9fe6 |
| .CRT |
512 |
1b0efd7a362bd7bafdfff004dffe1523 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
23808 |
b2aaf06ac14b761340a0754480897797 |
| .reloc |
2048 |
36edbff1102eb508c886183d49a22b55 |
