How to remove paexec.exe
paexec.exe
The module paexec.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | PAExec Application |
| Company Name: | Power Admin LLC |
| MD5: | b33f67fc7113e49987898fd76abc86d8 |
| Size: | 282 KB |
| First Published: | 2018-09-02 22:09:34 (6 years ago) |
| Latest Published: | 2024-08-23 23:08:25 (9 months ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2024-08-23 23:08:25 (9 months ago) |
Overview
| Signed By: | Power Admin LLC |
| Status: | Valid |
Common Places:
| %programfiles% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %windir% |
| %windir% |
| %windir% |
| %windir% |
| %windir% |
| %windir% |
Geography:
| 40.7% | ||
| 25.6% | ||
| 14.0% | ||
| 3.5% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 1.2% | ||
| 1.2% | ||
| 1.2% | ||
| 1.2% |
OS Version:
| Windows 10 | 50.6% | |
| Windows 7 | 44.8% | |
| Windows 8.1 | 4.6% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0001c5d4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 186880 | 00a153531ad35e8c649ac10f4d072a54 |
| .rdata | 47104 | 9ad42f51325e824d79f260d6bd3fcac7 |
| .data | 8704 | 30712e155306bd14390ed6a40b29e046 |
| .rsrc | 7680 | ceb80b39a8ef8091ea349724acb8d5cf |
| .reloc | 31232 | 1e590ebe39b8723a9a6f9aea25e54ef8 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for paexec.exe
