How to remove svchost.exe
- File Details
- Overview
- Analysis
svchost.exe
The module svchost.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
9d352721d8854fcf449380e7d55e6949 |
| Size: |
2 MB |
| First Published: |
2018-10-23 11:02:16 (7 years ago) |
| Latest Published: |
2024-12-07 23:01:42 (a year ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2024-12-07 23:01:42 (a year ago) |
| %windir%\fonts\thumb\77c4ad3f3cb3d812d68fab7a354d4a77 |
| %sysdrive%\install\miner |
| Windows Server 2016 |
66.7% |
|
| Windows 7 |
33.3% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x0018a2d4 |
| Name |
Size of data |
MD5 |
| .text |
1954816 |
dea049afa64af7c5fd578380113516a9 |
| .rdata |
697856 |
38bb594104da0dcb739ce51f5ce6a4e7 |
| .data |
55808 |
5d161b03e0120408b084b9854da43292 |
| .pdata |
87552 |
96ae952c8f110801197a98eb0e410df8 |
| _TEXT_CN |
3584 |
b3092c78cb64bf57243ac2e3fe9bd3d6 |
| .rsrc |
23040 |
7cabb56afb182228905c88f9859396e3 |
| .reloc |
27648 |
0315e58caa98eff22caae8ab54d22520 |
