How to remove excavator.exe

excavator.exe

The module excavator.exe has been detected as Risk.CoinMiner

excavator.exe
Remove excavator.exe

File Details

Product Name:

NiceHash Excavator
Company Name:

H-BIT d.o.o.
MD5: fb4b57aaee19fdeb35cdb5efd137c88d
Size: 7 MB
First Published: 2021-07-24 20:44:17 (3 years ago)
Latest Published: 2025-04-12 23:02:43 (2 months ago)
Status: Risk.CoinMiner (on last analysis)
Analysis Date: 2025-04-12 23:02:43 (2 months ago)

Overview

Signed By: H-BIT, d.o.o.
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%desktop%
%sysdrive%\aid farhan\downloads\nicehash
%sysdrive%\aid farhan\downloads\nicehash

Geography:

66.7%
33.3%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x002add80

PE Sections:

Name Size of data MD5
.text 3285504 4d2f09c43d1fd8ecabfe5d2698ddef7b
.rdata 2824192 a9a7538bd9ab48333876be7b65c7dcdb
.data 389120 590a55b4e3d9c5d1cf6878ef79e50375
.pdata 157696 61c37087724e1109bfc332ac7355a880
.nv_fatb 1280000 0959ccc0466da7fce85c9b7586f5d557
.nvFatBi 512 c608bc515d63d873e8c9c3e5082e86b2
_RDATA 512 ba38d031f65ca68732ccd487988dbfbe
.rsrc 34816 ab2773adbbb18f9518ecf7fe37883eb0
.reloc 34816 73eef43359aed877698525edb6145491

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for excavator.exe
copyright for information about excavator.exe