How to remove winlogui.exe

winlogui.exe

The module winlogui.exe has been detected as Trojan.CoinMiner

winlogui.exe
Remove winlogui.exe

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: fb9f4eb58354e9d3d6b7f84f5d12b639
Size: 733 KB
First Published: 2019-11-26 12:39:37 (4 years ago)
Latest Published: 2023-08-10 23:46:53 (8 months ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2023-08-10 23:46:53 (8 months ago)

Common Places:

%system%
%system%
%system%
%system%
%system%
%system%
%system%
%system%
%system%
%system%

Geography:

18.4%
8.3%
5.7%
4.2%
3.6%
3.0%
2.8%
2.4%
2.4%
2.3%
2.1%
1.9%
1.9%
1.7%
1.7%
1.7%
1.6%
1.6%
1.4%
1.4%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.0%
1.0%
1.0%
1.0%
0.9%
0.9%
0.9%
0.9%
0.7%
0.7%
0.7%
0.7%
0.7%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 10 97.7%
Windows 7 2.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000400000
Entry Address: 0x004e3320

PE Sections:

Name Size of data MD5
UPX0 0 00000000000000000000000000000000
UPX1 747008 431761dd6ea968d1d2f767b2bf73268c
.rsrc 3072 77c43e08dfafeafef6f418f1c05a3f5b

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for winlogui.exe
copyright for information about winlogui.exe