How to remove Elevate (2018_05_31 21_01_10 UTC).exe

» File
File Details
Overview
Analysis

Elevate (2018_05_31 21_01_10 UTC).exe

The module Elevate (2018_05_31 21_01_10 UTC).exe has been detected as Risk.CoinMiner

Remove Elevate (2018_05_31

File Details

Main Info:

Product Name:	Elevate Application
Company Name:	Johannes Passing
MD5:	cef91eeefd0a13f79067a40ccedc15d9
Size:	105 KB
First Published:	2018-03-12 20:23:08 (6 years ago)
Latest Published:	2020-01-14 20:54:16 (4 years ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2020-01-14 20:54:16 (4 years ago)

Overview

Digital Signature

Signed By:	NICEHASH, d.o.o.
Status:	Valid

Common Places:

%localappdata%\programs\nicehash miner 2

%programfiles%\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\tlbhwxkr5d6halkd\users\money\appdata\local\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\tlbhwxkr5d6halkd\users\money\local settings\application data\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\appdata\local\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\local settings\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\local settings\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\appdata\local\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\local settings\application data\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\local settings\application data\application data\application data\programs\nicehash miner 2

File Names:

Elevate.exe

Elevate (2018_05_31 21_01_10 UTC).exe

Geography:

	21.2%
	19.4%
	9.7%
	3.7%
	3.5%
	3.0%
	2.8%
	2.5%
	2.5%
	1.8%
	1.8%
	1.4%
	1.4%
	1.4%
	1.4%
	1.2%
	1.2%
	1.2%
	1.2%
	1.2%
	1.2%
	0.9%
	0.9%
	0.9%
	0.9%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%

OS Version:

Windows 10	83.9%
Windows 7	10.2%
Windows 8.1	4.3%
Windows Server 2008 R2	0.9%
Windows Server 2012	0.5%
Windows Server 2012 R2	0.2%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00001e38

PE Sections:

Name	Size of data	MD5
.text	51712	302f0d2bc348eaddd27928b585bafde7
.rdata	27648	6b0da03e35222730df34c5136875f07e
.data	5632	91671df2f4f47734c006ec3e00453c35
.pdata	3072	97d513c8fc43bb4a8cb92e328919187f
.rsrc	1536	f1f4989c3f1dd9db44ede5e1e68b3ab1
.reloc	1536	28dabd9d6b66e442b366ffafe32d9378

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Elevate (2018_05_31 21_01_10 UTC).exe

copyright for information about Elevate (2018_05_31 21_01_10 UTC).exe

How to remove Elevate (2018_05_31 21_01_10 UTC).exe

Elevate (2018_05_31 21_01_10 UTC).exe

The module Elevate (2018_05_31 21_01_10 UTC).exe has been detected as Risk.CoinMiner

File Details

Main Info:

Elevate Application

Johannes Passing

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: