How to remove msinfo.exe
msinfo.exe
The module msinfo.exe has been detected as Trojan.Kryptik
File Details
| Product Name: | Microl office |
| Company Name: | Microl office |
| MD5: | bbae338b0cac5a2d169b8c535f33bfa0 |
| Size: | 6 MB |
| First Published: | 2020-08-17 12:10:46 (4 years ago) |
| Latest Published: | 2020-12-10 14:58:46 (4 years ago) |
| Status: | Trojan.Kryptik (on last analysis) | |
| Analysis Date: | 2020-12-10 14:58:46 (4 years ago) |
Common Places:
| %windir% |
| %windir% |
| %windir% |
| %windir% |
| %windir% |
| %sysdrive%\$recycle.bin |
| %windir% |
| %windir% |
| %windir% |
| %programfiles%\trend\sprotect\x64 |
Geography:
| 21.1% | ||
| 15.8% | ||
| 10.5% | ||
| 10.5% | ||
| 10.5% | ||
| 5.3% | ||
| 5.3% | ||
| 5.3% | ||
| 5.3% | ||
| 5.3% |
OS Version:
| Windows Server 2008 R2 | 42.9% | |
| Windows Server 2012 R2 | 38.1% | |
| Windows Server 2003 | 9.5% | |
| Windows Server 2012 | 9.5% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00a0e0f9 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .rdata | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .data | 0 | d41d8cd98f00b204e9800998ecf8427e |
| upx0 | 0 | d41d8cd98f00b204e9800998ecf8427e |
| upx1 | 6960640 | e90fda6218ab72042533bb86a6c0da6e |
| .reloc | 1536 | acf35b0f706a77e017a36de3e92f4a77 |
| .rsrc | 1536 | e2bb815a308d60382029bd8ebad2b272 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for msinfo.exe
