How to remove NsCpuCNMiner64.exe

NsCpuCNMiner64.exe

The module NsCpuCNMiner64.exe has been detected as Risk.CoinMiner

NsCpuCNMiner64.exe
Remove NsCpuCNMiner64.exe

File Details

Product Name:

XMRig
Company Name:

www.xmrig.com
MD5: 6e6d33d666387647a22a9abd0dd6d50d
Size: 2 MB
First Published: 2019-03-06 04:01:38 (6 years ago)
Latest Published: 2021-03-16 21:34:35 (4 years ago)
Status: Risk.CoinMiner (on last analysis)
Analysis Date: 2021-03-16 21:34:35 (4 years ago)

Common Places:

%appdata%
%appdata%
%appdata%\adobe
%appdata%
%appdata%
%appdata%
%appdata%\adobe
%appdata%\adobe
%appdata%\adobe
%appdata%

Geography:

28.3%
12.5%
7.5%
6.3%
5.8%
5.8%
5.0%
4.2%
3.8%
2.9%
1.7%
1.7%
1.7%
1.3%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%

OS Version:

Windows 7 51.0%
Windows Server 2008 R2 34.4%
Windows 10 5.4%
Windows 8.1 3.7%
Windows Vista 3.3%
Windows Server 2012 R2 1.7%
Windows 8 0.4%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000400000
Entry Address: 0x000014f0

PE Sections:

Name Size of data MD5
.text 1797632 38cb7dd139bc9e7f78cd2e990e8eca66
.data 9728 3baaccd6d2186e0e77ff86301a2cd657
.rdata 153600 14e118df2d3641256999bf0bf3522356
.pdata 65024 8d95f26b88b4dbb34e0237052a0c339c
.xdata 90112 c5f4e4867d6e4d86ce0fa058554b20bd
.bss 0 00000000000000000000000000000000
.edata 1536 05a55440924b34e72ac1a5f3ee173b61
.idata 13312 185213e7f534b01bbd366b12b9dc9f8b
.CRT 512 cc28e0c309ceeff078ebf25748df17af
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
.rsrc 23816 060e137da41440fbf735b8d6ccb4e851
.reloc 8704 b7c9c6c625b2a29bb277712d0f2cebd5

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for NsCpuCNMiner64.exe
copyright for information about NsCpuCNMiner64.exe