How to remove excavator.exe
- File Details
- Overview
- Analysis
excavator.exe
The module excavator.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1b8123d2b23124c873b104b209fa11a6 |
| Size: |
7 MB |
| First Published: |
2021-05-20 20:36:45 (4 years ago) |
| Latest Published: |
2021-11-28 21:10:32 (3 years ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-11-28 21:10:32 (3 years ago) |
Overview
| Signed By: |
H-BIT, d.o.o. |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %mydoc% |
| %sysdrive%\nicehash |
| %profile% |
| %profile% |
| %desktop% |
| %sysdrive%\nicehash |
| %sysdrive%\nicehash |
|
37.5% |
|
|
25.0% |
|
|
12.5% |
|
|
12.5% |
|
|
12.5% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x002c2618 |
| Name |
Size of data |
MD5 |
| .text |
3262464 |
b95ce454909e143a0515aeca26ed5642 |
| .rdata |
3068416 |
903b0f8d2fca6056830a992f21101409 |
| .data |
411648 |
1223fac0c8c7f3fa07337865f4fa40aa |
| .pdata |
151552 |
996d68727025f7f4c716bfa6747a3b60 |
| .nv_fatb |
1236480 |
604f32097193cc255ede8b981e7843b9 |
| .nvFatBi |
512 |
ca1e01ff9d924ff0d0cee18048e636b4 |
| _RDATA |
512 |
9f9fc2324935f63fb8eeb0c2760d0a9d |
| .rsrc |
34816 |
e618f042f492ca072fbb260f9df8a0d8 |
| .reloc |
33280 |
f76205ff0cd5de0c87ee805085091df0 |
