How to remove websock.exe

» File
File Details
Overview
Analysis

websock.exe

The module websock.exe has been detected as Risk.CoinMiner

Remove websock.exe

File Details

Main Info:

Product Name:	CPU utility
Company Name:	PC Tools
MD5:	5d8dbf60120617dd57f4ee851cd32fb6
Size:	5 MB
First Published:	2017-09-27 16:04:11 (7 years ago)
Latest Published:	2024-04-09 23:01:56 (a year ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2024-04-09 23:01:56 (a year ago)

Common Places:

%sysdrive%\disk

%sysdrive%\applications

%sysdrive%\winsys

%sysdrive%\avast! sandbox\s-1-5-21-3939986573-4102505418-3639366840-1004\r119\service.exe_{8b9caade-a3ad-11e7-8de6-048d383798f6}\c\applications

%sysdrive%\$recycle.bin\s-1-5-21-329686028-1258328037-2662448962-1001

%sysdrive%\windat

%sysdrive%\$recycle.bin\s-1-5-21-3776738029-1593190185-939278139-1001

%sysdrive%\disk8

%sysdrive%\$recycle.bin\s-1-5-21-1381739125-3279690646-1860596217-1001\$r0gxpk1

%desktop%\disk1

File Names:

securedisk.exe

websock.exe

sysConfig.bat

$RHT0LIN.exe

$R04KS35.exe

$RF91BNG.bat

trzC4F0.tmp

syslog.bat

websock.exe.quarantined

websock.exe.infected

dfhdfhdfh.exe

securedisk.exe.quarantined

WEBSOCK.del

websock - Copy.exe

$ROGARS0.exe

websock.exe.[BM-2cTVHx6b7RYhJ9gGKZn6yTuBpBBq3LHRkz@bitmessage.ch or BM-2cSxePLmJiWZLiaLvogpaG7ibaGLsuR3uU@bitmessage.ch]-id-18AC.payday

trzF8B5.tmp

websock.VIR

k.exe

trzE33D.tmp

$ROWHNDY.exe

securedisk.exe.SUPERDelete

websock.exe.SUPERDelete

trz27D8.tmp

$R8PVQJW.exe

trzBB44.tmp

Geography:

	10.8%
	9.4%
	8.9%
	6.3%
	5.4%
	5.1%
	4.7%
	4.5%
	3.4%
	2.9%
	2.2%
	2.2%
	2.1%
	2.1%
	2.0%
	1.5%
	1.4%
	1.4%
	1.2%
	1.0%
	1.0%
	0.9%
	0.9%
	0.9%
	0.9%
	0.8%
	0.8%
	0.8%
	0.7%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.5%
	0.5%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%
	0.1%

OS Version:

Windows 10	64.5%
Windows 7	25.8%
Windows 8.1	8.9%
Windows 8	0.7%
Windows Vista	0.1%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0001571c

PE Sections:

Name	Size of data	MD5
.text	325120	c9f3b5f21cd15b354273f75a4000ba7a
.rdata	95232	5ccd743d37c046284726cea637adf153
.data	7168	2286618f56b1451aa0a19d61588f086e
.pdata	15360	acc5f6470ea6740b3be9691a93289fd3
.rsrc	4824064	630103fb74b079507329054d4e29469c
.reloc	2560	187fd113a133ec5a1f45762fb270b31e

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for websock.exe

copyright for information about websock.exe

How to remove websock.exe

websock.exe

The module websock.exe has been detected as Risk.CoinMiner

File Details

Main Info:

CPU utility

PC Tools

Analysis:

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: