How to remove mimidrv.sys

» File
File Details
Overview
Analysis

mimidrv.sys

The module mimidrv.sys has been detected as Trojan.Gen

mimidrv.sys

Remove mimidrv.sys

File Details

Main Info:

Product Name:	mimidrv (mimikatz)
Company Name:	gentilkiwi (Benjamin DELPY)
MD5:	6b480fac7caca2f85be9a0cfe79aedfc
Size:	32 KB
First Published:	2017-09-14 01:01:19 (7 years ago)
Latest Published:	2018-06-11 08:12:53 (6 years ago)

Analysis:

Status:	Trojan.Gen (on last analysis)
Analysis Date:	2018-06-11 08:12:53 (6 years ago)

Overview

Digital Signature

Signed By:	Benjamin Delpy
Status:	Valid

Common Places:

%profile%\downloads\mimikatz_trunk\x64

%desktop%\1\mimikatz_trunk

Geography:

	66.7%
	33.3%

OS Version:

Windows Server 2008 R2

100.0%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x0000b064

PE Sections:

Name	Size of data	MD5
.text	12800	3243268449f114ba8045505c335d4843
.rdata	5120	0b49c36c3917f2a410c78ce7fdbc8c9e
.data	5120	d41852285976224045fb7f5f5f0c0de2
.pdata	512	c903cc0b55f6f380d2c93e6918d2a14f
PAGE	1024	525da03ca02c6694c860e3f655ebf1d3
INIT	1536	6ba44e961efadd26bd07cdf50e02f977
.rsrc	1536	aee16d372d9493bc4a8772da766949f3
.reloc	512	52db9f52ad48fff6c0bdb4fb97e3c22b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for mimidrv.sys

copyright for information about mimidrv.sys