How to remove NsCpuCNMiner32.exe

NsCpuCNMiner32.exe

The module NsCpuCNMiner32.exe has been detected as Trojan.CoinMiner

NsCpuCNMiner32.exe
Remove NsCpuCNMiner32.exe

File Details

Product Name:

XMRig
Company Name:

www.xmrig.com
MD5: e8e50cfa7f6fe0c3b54cb1e11e92960c
Size: 2 MB
First Published: 2019-03-06 04:03:47 (6 years ago)
Latest Published: 2021-03-16 21:33:54 (4 years ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2021-03-16 21:33:54 (4 years ago)

Common Places:

%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%

Geography:

Dominican Republic 15.0%
Taiwan 11.1%
Vietnam 8.9%
Pakistan 8.9%
India 8.3%
Russia 6.7%
Kazakhstan 6.1%
Iran 6.1%
Japan 5.0%
Venezuela 2.8%
United Kingdom 2.2%
Ukraine 2.2%
Armenia 1.7%
Brazil 1.7%
United States 1.7%
Ethiopia 1.1%
Morocco 1.1%
Bulgaria 1.1%
Belarus 1.1%
Saudi Arabia 1.1%
Austria 0.6%
Ghana 0.6%
Thailand 0.6%
Rwanda 0.6%
Angola 0.6%
Egypt 0.6%
South Africa 0.6%
Mongolia 0.6%
Kyrgyzstan 0.6%
Papua New Guinea 0.6%
Singapore 0.6%

OS Version:

Windows 7 64.6%
Windows Server 2008 R2 19.7%
Windows 10 5.1%
Windows 8.1 4.5%
Windows Vista 3.9%
Windows Server 2012 R2 1.7%
Windows 8 0.6%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001500

PE Sections:

Name Size of data MD5
.text 2187264 da1421ed054a74167b4de760d3f69974
.data 6144 3f9958af39bcfb15d1ea5c8cfcca60b3
.rdata 121856 b334945ec9c7fe0f6bd6e0bd56bfe2b9
.eh_fram 341504 99f04145399c8ca814cc2bc2e943a7ba
.bss 0 00000000000000000000000000000000
.edata 1536 314a5973abe95732aa9ba6e756c7e274
.idata 9728 66a72d41a46c22cfb0cb4b2b97d6a26f
.CRT 512 b1c78c04e595365fa20ec7e224da78fc
.tls 512 a6562187239314f355e72188924d0da8
.rsrc 23816 5e2eb6d8d9e1a74ba0a486c12ef86876
.reloc 55296 fe34739691796d88e8a644140709b246

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for NsCpuCNMiner32.exe
copyright for information about NsCpuCNMiner32.exe
­