How to remove msinfo.exe
msinfo.exe
The module msinfo.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | Microl office |
| Company Name: | Microl office |
| MD5: | 06e94bb4a3db98858aab1353dc7f39aa |
| Size: | 4 MB |
| First Published: | 2018-05-18 17:08:31 (6 years ago) |
| Latest Published: | 2018-11-19 01:06:55 (6 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-11-19 01:06:55 (6 years ago) |
Common Places:
| %windir% |
Geography:
| 59.5% | ||
| 14.3% | ||
| 4.8% | ||
| 4.8% | ||
| 2.4% | ||
| 2.4% | ||
| 2.4% | ||
| 2.4% | ||
| 2.4% | ||
| 2.4% | ||
| 2.4% |
OS Version:
| Windows Server 2008 R2 | 75.6% | |
| Windows Server 2012 R2 | 14.6% | |
| Windows Server 2003 | 7.3% | |
| Windows Small Business Server 2011 | 2.4% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x009c2e79 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | 00000000000000000000000000000000 |
| .rdata | 0 | 00000000000000000000000000000000 |
| .data | 0 | 00000000000000000000000000000000 |
| affas0 | 0 | 00000000000000000000000000000000 |
| affas1 | 5076992 | 0c8417f6078cb034745055275a93ddbb |
| .rsrc | 2560 | 2e0b1d603e068e68e7183cc212833467 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for msinfo.exe
