How to remove service_box.exe

service_box.exe

The module service_box.exe has been detected as Trojan.CoinMiner

service_box.exe
Remove service_box.exe

File Details

Product Name:

System Native Service
Company Name:

www.somedomainthatnotexists.com
MD5: fa2a229e9f430e0993e82d242a64bb1a
Size: 1000 KB
First Published: 2018-02-09 21:09:35 (6 years ago)
Latest Published: 2018-06-04 04:07:06 (6 years ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2018-06-04 04:07:06 (6 years ago)

Overview

Signed By: Jetstar Media LTD
Status: Valid

Common Places:

%programfiles%\system native

Geography:

100.0%

OS Version:

Windows 7 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001500

PE Sections:

Name Size of data MD5
.text 722432 c83f583c468412a420cda30d5cc41827
.data 512 773e2d5e80ba7f6f7457942024c45818
.rdata 62976 02192102f21d4ff455784c0150a97470
.eh_fram 112128 8c27b91914ebf0038a87b6953fc36559
.bss 0 00000000000000000000000000000000
.idata 9728 da3d5232668162b0062fd21edd1e0832
.CRT 512 ff39970503809067e1556cdf4b838088
.tls 512 65e87a41a853e37787dad7dd6ca72dea
.rsrc 106544 616adff212e479676009d2db75cdb5a7

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for service_box.exe
copyright for information about service_box.exe