How to remove isMiner.exe
- File Details
- Overview
- Analysis
isMiner.exe
The module isMiner.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
d5a22130533b99839cc91c2f3d5bd7f8 |
| Size: |
2 MB |
| First Published: |
2017-05-29 17:09:27 (7 years ago) |
| Latest Published: |
2017-12-20 12:03:26 (6 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2017-12-20 12:03:26 (6 years ago) |
| %localappdata%\temp |
| %appdata%\isminer |
| %appdata% |
| mmc99.exe |
| isMiner.exe |
| isminer.exe |
| mmc100.exe |
|
43.8% |
|
|
14.6% |
|
|
10.4% |
|
|
6.3% |
|
|
4.2% |
|
|
4.2% |
|
|
4.2% |
|
|
4.2% |
|
|
4.2% |
|
|
2.1% |
|
|
2.1% |
|
| Windows 7 |
71.4% |
|
| Windows 10 |
16.3% |
|
| Windows 8.1 |
10.2% |
|
| Windows 8 |
2.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x002874fc |
| Name |
Size of data |
MD5 |
| .text |
2634752 |
0a23ffcae8a337ddc10bfe76c05b3825 |
| .itext |
9728 |
bb4f2e28e111efb080cb0f550b7e72d9 |
| .data |
44544 |
168e5ddb431248ad7fc3d8a06c242f44 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
14848 |
faa6161258aa3abb655ab74d4dff298a |
| .didata |
3072 |
1ab22736b232a0482bda2b1f7510b3b7 |
| .edata |
512 |
8a4a346d8732733a0417e151c76135db |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
b425b7f9f9397dad8782f5b3fbaae4bf |
| .rsrc |
267264 |
a08833502a3212b316960384e7381cd0 |
