How to remove msinfo.exe

msinfo.exe

The module msinfo.exe has been detected as Trojan.CoinMiner

msinfo.exe
Remove msinfo.exe

File Details

Product Name:

Microl office
Company Name:

Microl office
MD5: 03a704d98634f761d090aead21c7256a
Size: 4 MB
First Published: 2018-12-28 15:43:02 (5 years ago)
Latest Published: 2019-10-15 14:29:24 (5 years ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2019-10-15 14:29:24 (5 years ago)

Common Places:

%windir%
%windir%
%windir%
%windir%
%windir%
%windir%
%windir%
%windir%
%windir%
%windir%

Geography:

40.1%
9.9%
6.8%
6.3%
6.3%
3.6%
3.2%
2.7%
2.7%
2.7%
2.3%
1.8%
1.4%
1.4%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%

OS Version:

Windows Server 2008 R2 84.2%
Windows Server 2003 11.5%
Windows Server 2012 R2 4.3%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x007b0103

PE Sections:

Name Size of data MD5
.text 0 00000000000000000000000000000000
.rdata 0 00000000000000000000000000000000
.data 0 00000000000000000000000000000000
qq0 0 00000000000000000000000000000000
qq1 4883456 dd49e70351ef157c9a9f2aafa7e6e214
.reloc 1536 f35df70adc19c7d4d52805cfa10eb218
.rsrc 1536 9a715d151c17ecc9786603ca1a9c4102

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for msinfo.exe
copyright for information about msinfo.exe