How to remove service.exe
- File Details
- Overview
- Analysis
service.exe
The module service.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
ef1a582413b50e6f5a4e57a81085f450 |
| Size: |
13 MB |
| First Published: |
2017-09-11 20:15:08 (6 years ago) |
| Latest Published: |
2020-04-10 17:34:07 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2020-04-10 17:34:07 (4 years ago) |
| %sysdrive%\applications |
| %sysdrive%\applic~1 |
| %sysdrive% |
| %sysdrive% |
| Service.exe |
| service.exe |
| trzEDE9.tmp |
| trzF080.tmp |
|
11.6% |
|
|
11.6% |
|
|
11.6% |
|
|
9.3% |
|
|
8.1% |
|
|
4.7% |
|
|
4.7% |
|
|
4.7% |
|
|
4.7% |
|
|
3.5% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
| Windows 10 |
52.3% |
|
| Windows 7 |
37.2% |
|
| Windows 8.1 |
7.0% |
|
| Windows XP |
2.3% |
|
| Windows 8 |
1.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0057bb0a |
| Name |
Size of data |
MD5 |
| .textbss |
0 |
00000000000000000000000000000000 |
| .text |
11595264 |
b01b9082d298f881ce46a5abf5407a66 |
| .rdata |
1852928 |
89bfc996477c8f992314c2331b119684 |
| .data |
129536 |
29afaf0768f9676715563158b5e287bc |
| .idata |
31744 |
c05730c753dc02ef3a45fe8677ccac64 |
| .tls |
1024 |
c573bd7cea296a9c5d230ca6b5aee1a6 |
| .00cfg |
512 |
e4ecb76b26af8c6e56b4ca72661f60e2 |
| .rsrc |
104960 |
fdb7ceaa90b6af3f53d0bd4baf9bf240 |
| .reloc |
490496 |
d1c988a23e1f43bd19e8113b0195160f |
