How to remove nvvlme.exe
nvvlme.exe
The module nvvlme.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | NVIDIA Driver SDK Framework Component |
| Company Name: | NVIDIA Corporation |
| MD5: | 5e429f6ab4f9970242883b85d22bcfb7 |
| Size: | 1 MB |
| First Published: | 2018-07-25 04:06:46 (6 years ago) |
| Latest Published: | 2018-11-11 13:25:42 (6 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-11-11 13:25:42 (6 years ago) |
Overview
| Signed By: | SAGE BRASIL SOFTWARE S.A. |
| Status: | Valid |
Common Places:
| %commondir% |
| %sysdrive%\$recycle.bin\s-1-5-21-1536223880-2718039243-938574631-1000 |
Geography:
| 80.0% | ||
| 6.7% | ||
| 6.7% | ||
| 6.7% |
OS Version:
| Windows 10 | 60.0% | |
| Windows 7 | 40.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00565c29 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | 00000000000000000000000000000000 |
| .data | 0 | 00000000000000000000000000000000 |
| .rdata | 0 | 00000000000000000000000000000000 |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 0 | 00000000000000000000000000000000 |
| .CRT | 0 | 00000000000000000000000000000000 |
| .tls | 512 | c0ba1306347a5116e1576127a33a225d |
| .rsrc | 150016 | a121574c580c98d44d722573ddf78ced |
| .vmp0 | 0 | 00000000000000000000000000000000 |
| .vmp1 | 1647616 | d7c8f1889915b1da64e3702a636204f7 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for nvvlme.exe
