How to remove vorox.exe
vorox.exe
The module vorox.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | 5c889d99ecdfc75ec434d2354c7a0ebc |
| Size: | 657 KB |
| First Published: | 2017-07-10 22:03:44 (6 years ago) |
| Latest Published: | 2017-11-24 07:10:34 (6 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2017-11-24 07:10:34 (6 years ago) |
Common Places:
| %temp%\msvc |
| %appdata%\smoti2 |
| %appdata%\msvc |
| %appdata%\valit |
| %appdata%\sasha |
| %appdata%\autospeed |
| %appdata%\azama |
| %appdata%\nanera |
| %appdata%\akama |
| %appdata%\yillar |
File Names:
| MSVC.exe |
| vorox.exe |
| BIT4CF9.tmp |
| zabor.exe |
| zake.exe |
| lux.exe |
| hux.exe |
Geography:
| 22.6% | ||
| 12.9% | ||
| 9.7% | ||
| 9.7% | ||
| 9.7% | ||
| 9.7% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% | ||
| 3.2% |
OS Version:
| Windows 7 | 96.8% | |
| Windows 8.1 | 3.2% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000014e0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 519680 | fd516c9a57bf000a1ea952879bf1157d |
| .data | 1024 | 41d235d8378650b3d8501d3ab59c67df |
| .rdata | 53248 | d70c99600edd254bc26cb1208ccf5c7b |
| .eh_fram | 70144 | 7c39a856488fc8e0d5c2e97ceb67bf94 |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 9216 | 5884ed19aebc2e0dc0f9e903bbce0149 |
| .CRT | 512 | 49b042e5b781ca215ebb2dce74af279c |
| .tls | 512 | 99d479ed05a563f446383921fa15e4db |
| .rsrc | 17360 | cbdff1a8e34f722f72f169d831fedf43 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for vorox.exe
