How to remove excavator.exe

excavator.exe

The module excavator.exe has been detected as Risk.CoinMiner

excavator.exe
Remove excavator.exe

File Details

MD5: 8f3af7456408a0f38b758f200274dfa6
Size: 15 MB
First Published: 2018-03-13 18:11:13 (6 years ago)
Latest Published: 2019-07-29 20:30:58 (5 years ago)
Status: Risk.CoinMiner (on last analysis)
Analysis Date: 2019-07-29 20:30:58 (5 years ago)

Overview

Signed By: NICEHASH, d.o.o.
Status: Valid

Common Places:

%desktop%\ขุด\new folder\buayminerv2.2\buayminerv2.2\buayminerv2.2\bin
%appdata%\nhm2\bin
%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\application data\nhm2\bin
%profile%\onedrive\mining\nvidea miners\bin
%desktop%\nvidea miners\bin
%sysdrive%\$recycle.bin\s-1-5-21-1612451464-2728915547-2537902126-1002\$rl1cb0n\bin
%appdata%\nhm2\bin
%appdata%\nhm2\bin
%appdata%\nhm2\bin
%appdata%\nhm2\bin

Geography:

23.2%
14.6%
9.8%
6.1%
4.9%
4.9%
3.7%
2.4%
2.4%
2.4%
2.4%
2.4%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%

OS Version:

Windows 10 83.5%
Windows 7 16.5%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x001392c0

PE Sections:

Name Size of data MD5
.text 1352192 fa8fa904f2b662d0be40e4c45bad3f8e
.rdata 469504 e2d8edcb9e739fdc141baaf58205a944
.data 1181696 3dfe71cb64c1bd4e63f0823e31b01213
.pdata 54784 401d52c8fd2f86db80fff6d88d7a3c7a
.nv_fatb 13364736 d9fde069aaace0c3a0b537934580fb48
.nvFatBi 1024 db6e0c201c1522c85529a0d84f6d4a77
.rsrc 512 2bdd7a44025df05879409f4b5a8b77c7
.reloc 8704 d96e5f67009f3a619f31f7439fc9d63b

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for excavator.exe
copyright for information about excavator.exe