How to remove vmicsvc.exe
- File Details
- Overview
- Analysis
vmicsvc.exe
The module vmicsvc.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| MD5: |
8dc9687183e7ad64d61c91f166cf17dd |
| Size: |
5 MB |
| First Published: |
2020-02-17 18:10:58 (5 years ago) |
| Latest Published: |
2021-01-10 14:22:44 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-01-10 14:22:44 (4 years ago) |
| %appdata%\winrar |
| %appdata%\winrar |
| %appdata%\winrar |
| %sysdrive%\vtroot\harddiskvolume4\users\sebastian\appdata\roaming\systemdiag |
| Windows 10 |
57.1% |
|
| Windows 7 |
42.9% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x000bd6c4 |
| Name |
Size of data |
MD5 |
| .text |
1160192 |
e364cd194b492878ad13ca6d58744dd5 |
| .rdata |
478720 |
078217aea4dab1916232d33d4a6d66c0 |
| .data |
26624 |
5da965431ab45491fa4cbc869a9a910e |
| .pdata |
61440 |
6c17da585049726669b101508b4c054b |
| .tls |
512 |
f6d8f52452bb087b3202f5b7c40e7223 |
| .nv_fatb |
4315648 |
c883c6eaf3de030fd5f508a5f415b1cc |
| .nvFatBi |
512 |
3dca28212729fa6aa99e1a402818a2e4 |
| .gfids |
3072 |
c65563ff5faa218e1c80d01eb11c01e3 |
| .rsrc |
1536 |
ff80f308b8b64f4df22db439339e292d |
| .reloc |
8192 |
ff8ff558906b7c9aaced725493bb7fcd |
