How to remove we64[1].exe

» File
File Details
Overview
Analysis

we64[1].exe

The module we64[1].exe has been detected as Risk.CoinMiner

we64[1].exe

Remove we64[1].exe

File Details

Main Info:

MD5:	9dc1ee70c278d7ed60daf1b3c5ed4ea8
Size:	1 MB
First Published:	2020-07-03 09:27:12 (3 years ago)
Latest Published:	2021-02-04 16:56:35 (3 years ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2021-02-04 16:56:35 (3 years ago)

Common Places:

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

Geography:

	94.1%
	5.9%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00032f49

PE Sections:

Name	Size of data	MD5
.text	261632	033e0f572975e0811f340d6fda5c26b3
.rdata	52736	6f72b56aeecf93881708dbf3793e4d98
.data	16896	cb317d731399e273150e74dc7d57f0b7
.rsrc	78848	8e35c7fb4faa6a7e2eaf3ace6305adc2

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for we64[1].exe

copyright for information about we64[1].exe