How to remove runnhmasadmin.exe
- File Details
- Overview
- Analysis
runnhmasadmin.exe
The module runnhmasadmin.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| MD5: |
6872f47f543985609040157a84fc1afd |
| Size: |
22 KB |
| First Published: |
2021-11-16 21:47:22 (4 years ago) |
| Latest Published: |
2022-03-02 23:59:59 (3 years ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2022-03-02 23:59:59 (3 years ago) |
Overview
| %localappdata%\programs |
| %sysdrive%\saved prog installers\bitcoinminerprogs |
| %sysdrive%\file archives\saved prog installers |
| %sysdrive%\file archives\saved prog installers\bitcoinminerprogs |
| %sysdrive%\saved prog installers\bitcoinminerprogs |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
|
| Entry Address: |
|
| MVID: |
de56de35-7427-4332-b008-a7c4582c3143 |
| Typelib ID: |
3712894a-0836-4ce3-a4a9-c21a32aacbec |
| Name |
Size of data |
MD5 |
| .text |
2560 |
ffee32af41be12ecc4bb1b379c730cea |
| .rsrc |
4096 |
d053b7e3d268640fa8f13e9bcad6742f |
