How to remove excavator.exe
- File Details
- Overview
- Analysis
excavator.exe
The module excavator.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
d72ec82b0ba999f0457c030e9ecbcd62 |
| Size: |
27 MB |
| First Published: |
2025-08-31 23:00:20 (3 weeks ago) |
| Latest Published: |
2025-08-31 23:00:20 (3 weeks ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2025-08-31 23:00:20 (3 weeks ago) |
Overview
| %localappdata%\programs\nicehash miner\miner_plugins\27315fe0-3b03-11eb-b105-8d43d5bd63be\bins\19.4 |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x06f9edc1 |
| Name |
Size of data |
MD5 |
| .text |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .data |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .pdata |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .nv_fatb |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .nvFatBi |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| _RDATA |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| _RANDOMX |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .+?\ |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .9^= |
17408 |
a37a465f2e8a83a1da665da73b1f4d75 |
| .?[& |
28211200 |
7cd9871fd3bd5462a029330af42877df |
| .reloc |
512 |
cd0ee02cb0a68c8f483d64ff1a256186 |
| .rsrc |
286720 |
5e930e30e5ff21af062de8c2e8c83402 |
