How to remove Dv.exe
Dv.exe
The module Dv.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | Mscurlib64 |
| Company Name: | www.Mscurlib64.com |
| MD5: | ba9657c8828e6b31d8caa0ffa2d3c02d |
| Size: | 4 MB |
| First Published: | 2018-11-11 00:09:14 (6 years ago) |
| Latest Published: | 2018-12-22 03:13:38 (5 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-12-22 03:13:38 (5 years ago) |
Common Places:
| %sysdrive%\mscli |
| %sysdrive%\mscli |
File Names:
| GM.exe |
| mscli.exe |
| Zr.exe |
| G7.exe |
| f8.exe |
| iC.exe |
| bW.exe |
| CD.exe |
| lD.exe |
| 5x.exe |
| Dv.exe |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 78.6% | |
| Windows 10 | 21.4% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000000400000 |
| Entry Address: | 0x000014f0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3006464 | e7af96d5635378ad44d496dd4faefaa9 |
| .data | 25088 | 7804f650f8b8684eb2684860089463c8 |
| .rdata | 616960 | e8dc94cfd3bfea71881ebb3ecfc99062 |
| .pdata | 109568 | abf74e87f49d32dee29ec9f2484a1e31 |
| .xdata | 97792 | 7b6dd6fa8e61baee3f674b52f7094474 |
| .bss | 0 | 00000000000000000000000000000000 |
| .edata | 1536 | fa5841b49486f94f744046405835aeed |
| .idata | 15360 | 9c91ab4a23286377f172765eae7a8c3c |
| .CRT | 512 | e11f0cf8d8ef423b4556eacb54279a59 |
| .tls | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 372736 | 92f5188a0384da80b98e54e1289c5b06 |
| .reloc | 27136 | e13baba1f1a14978c193e7f5ee834b6b |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Dv.exe
