How to remove zohywe.exe
zohywe.exe
The module zohywe.exe has been detected as Trojan.CoinMiner
File Details
| MD5: | f175c6db5bce4e3e693eb5981df225c5 |
| Size: | 3 MB |
| First Published: | 2022-01-25 21:30:06 (2 years ago) |
| Latest Published: | 2022-09-25 23:33:40 (2 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2022-09-25 23:33:40 (2 years ago) |
Common Places:
| %temp% |
| %appdata% |
Geography:
| 50.0% | ||
| 50.0% |
OS Version:
| Windows 10 | 50.0% | |
| Windows 8.1 | 50.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x005da5d8 |
PE Sections:
| Name | Size of data | MD5 |
| 45056 | 0db488d2a6fdb8c3f9b031afeb6f953f | |
| 21504 | 15a290e854536cf7678d7882bdc21324 | |
| 5120 | f2f2382116d3569066d892f03c66b2a2 | |
| 3584 | 72527028c691ccdf0bf55fb521418887 | |
| 512 | 112889800b38e3b5dcc4362b5c704c9b | |
| 512 | 7b2af07efecc6c1a1d3d1ff25e8aaa98 | |
| 2048 | 7f4618df6610515d5546535c6e6d3947 | |
| .idata | 512 | 05e4b8af74888d289c08d861d4664137 |
| .themida | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .boot | 3420672 | a4eb27904cf166a9aabb18951dbaf4c5 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for zohywe.exe
