How to remove excavator.exe

» File
File Details
Overview
Analysis

excavator.exe

The module excavator.exe has been detected as Risk.CoinMiner

excavator.exe

Remove excavator.exe

File Details

Main Info:

MD5:	c57ad197d05b0ec37825a4bc51b4061c
Size:	7 MB
First Published:	2018-03-16 17:08:18 (6 years ago)
Latest Published:	2019-05-17 05:54:30 (5 years ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2019-05-17 05:54:30 (5 years ago)

Overview

Digital Signature

Signed By:	NICEHASH, d.o.o.
Status:	Valid

Common Places:

%sysdrive%\windows.old\users\admin\appdata\roaming\nhm2\bin

%appdata%\nhm2\bin

%appdata%\nhm2\bin

%sysdrive%\ssd backup\users\resul\appdata\roaming\nhm2\bin

Geography:

	37.5%
	18.8%
	12.5%
	6.3%
	6.3%
	6.3%
	6.3%
	6.3%

OS Version:

Windows 10	87.5%
Windows 7	12.5%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x000ffb78

PE Sections:

Name	Size of data	MD5
.text	1120768	3b5e23e0361c7637b2917499088d0b2a
.rdata	390144	46b2c0509050012dd57fe06a9e9194da
.data	2101760	e9bac50570444b05afe808ad04fc7b95
.pdata	53760	225518b9de55f90b8e1c52563bfe6dff
.nv_fatb	3868160	675fba9917d799e54104f60a825c6f2f
.nvFatBi	512	5be1f02c2fd7af7a8d4cfbbdc60a6d98
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	512	3fff5eba7db56cd49e2bcd126485ae88
.reloc	8704	8e4df11a966a9c94321cb30e37fb14f4

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for excavator.exe

copyright for information about excavator.exe