How to remove MP.Phoenix.dll
- File Details
- Overview
- Analysis
MP.Phoenix.dll
The module MP.Phoenix.dll has been detected as Trojan.CoinMiner
File Details
Product Name: |
|
Company Name: |
|
MD5: |
cc40dd7c81ea729e141154450d641252 |
Size: |
23 KB |
First Published: |
2021-02-09 04:06:21 (4 years ago) |
Latest Published: |
2024-08-24 23:00:49 (a year ago) |
Status: |
Trojan.CoinMiner (on last analysis) |
|
Analysis Date: |
2024-08-24 23:00:49 (a year ago) |
%desktop%\claymore\miner_plugins |
%profile%\downloads\nhm_windows_3.0.5.6.zip\miner_plugins |
%sysdrive%\$recycle.bin\s-1-5-21-567104610-97354673-3049529944-1001\$rg2td6g.zip\miner_plugins |
%sysdrive%\$recycle.bin |
%localappdata%\programs\nicehash miner\miner_plugins |
%localappdata%\programs\nicehash miner\miner_plugins |
%localappdata%\programs\nicehash miner\miner_plugins |
Russia |
28.6% |
|
Argentina |
28.6% |
|
Ukraine |
14.3% |
|
Albania |
14.3% |
|
Mexico |
14.3% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
|
Entry Address: |
|
MVID: |
eb5ffdd7-1d63-4064-a1eb-7eceea1062d0 |
Name |
Size of data |
MD5 |
.text |
22016 |
ac00bed415a505592fc699f249fce867 |
.rsrc |
1024 |
fd10ce085d507e40998576acd20309e2 |