How to remove update64.exe

» File
File Details
Overview
Analysis

update64.exe

The module update64.exe has been detected as Trojan.CoinMiner

update64.exe

Remove update64.exe

File Details

Main Info:

Product Name:	MServices X
Company Name:	Systema Natives
MD5:	87e3b8cbf928368037d13f6ad0d6840e
Size:	908 KB
First Published:	2018-05-02 10:06:18 (6 years ago)
Latest Published:	2023-02-20 23:39:42 (2 years ago)

Analysis:

Status:	Trojan.CoinMiner (on last analysis)
Analysis Date:	2023-02-20 23:39:42 (2 years ago)

Common Places:

%programfiles%\systema natives

%programfiles%\systema natives

%programfiles%\systema natives

Geography:

	20.5%
	14.7%
	11.5%
	10.3%
	6.4%
	3.8%
	3.2%
	2.6%
	1.9%
	1.9%
	1.9%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	1.3%
	0.6%
	0.6%
	0.6%

OS Version:

Windows 10	78.0%
Windows 7	14.5%
Windows 8.1	7.5%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00043386

PE Sections:

Name	Size of data	MD5
.text	398336	449b44d8d2d3019d10c666766b830981
.rdata	112640	f2ad215478d4ceb5ed6326a5d6d6c306
.data	4096	af15182bb87d1820a2e4aac900e0c173
.rsrc	391680	7ecd5e24209505232ceb41f1d1c00ccd
.reloc	22528	7a13f4b73b833f73f09636a74167dc2b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for update64.exe

copyright for information about update64.exe