How to remove excavator.exe

» File
File Details
Overview
Analysis

excavator.exe

The module excavator.exe has been detected as Risk.CoinMiner

excavator.exe

Remove excavator.exe

File Details

Main Info:

MD5:	70c258c9018b36cffa1283341b3661dc
Size:	10 MB
First Published:	2018-03-13 16:06:58 (6 years ago)
Latest Published:	2019-04-25 18:56:22 (5 years ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2019-04-25 18:56:22 (5 years ago)

Overview

Digital Signature

Signed By:	NICEHASH, d.o.o.
Status:	Valid

Common Places:

%appdata%\nhm2\bin

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\application data\nhm2\bin

%sysdrive%\backup\other\ssd1\users\admince a\appdata\roaming\nhm2\bin

%appdata%\nhm2\bin

%appdata%\nhm2\bin

Geography:

	32.4%
	10.8%
	8.1%
	8.1%
	8.1%
	5.4%
	5.4%
	5.4%
	2.7%
	2.7%
	2.7%
	2.7%
	2.7%
	2.7%

OS Version:

Windows 10	90.0%
Windows 7	10.0%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0013be50

PE Sections:

Name	Size of data	MD5
.text	1363968	6f89d2bc30f2f549d29d80882b74294b
.rdata	452608	2503a4b2be0ae4938c4f422f6df0d6e1
.data	709632	b1b184b1af29b076f6b8748a58c9bedd
.pdata	61440	f5470aaf26702483a545c9e8cbbdcc67
.nv_fatb	8619008	717eea8bd060c16996b0f25e3fe480d0
.nvFatBi	1024	fcf9dee3bf461d8001f96c2ebc09fe8a
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	512	681754ba6c1fcc548fbe21c180d7ef3b
.reloc	9216	65778e66d27cae99630b2283a68355fa

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for excavator.exe

copyright for information about excavator.exe