How to remove kryptex5.exe
- File Details
- Overview
- Analysis
kryptex5.exe
The module kryptex5.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
21ea04a4bf6a8f3c6c18f92a717a775a |
| Size: |
4 MB |
| First Published: |
2020-06-14 18:42:18 (5 years ago) |
| Latest Published: |
2021-01-15 11:17:47 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-01-15 11:17:47 (4 years ago) |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
| %appdata%\kryptex\miners |
|
59.1% |
|
|
9.1% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
|
4.5% |
|
| Windows 10 |
91.3% |
|
| Windows 8.1 |
8.7% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x002885d8 |
| Name |
Size of data |
MD5 |
| .text |
2991104 |
f35fe7fec890a3260c5edb960c66992f |
| .rdata |
867328 |
7c75e328a6ff7138d0057b5ca36ae756 |
| .data |
284160 |
16b5f3a08f9f003b553a5c4ffa45458b |
| .pdata |
124416 |
0a0d8d4130e7a7cf7ed9e047d2545797 |
| _RANDOMX |
2048 |
4c9ad32e381e3b0d5fe17bbaafaae2bf |
| _SHA3_25 |
2560 |
c14f9aad5e95192cd7523ba6675549fd |
| _TEXT_CN |
6656 |
6a7f77e47f77f65bef85036ae5a71106 |
| _TEXT_CN |
4608 |
409bf3f918f2402291cb56c2e9354b47 |
| _RDATA |
512 |
86ecc9663d9fb861001d2c7db5bb3226 |
| .rsrc |
1536 |
4425274b6c86a3ebbc12068e51bca6bf |
| .reloc |
33792 |
6498c520fda21b4c403586000db4fe5c |
