How to remove setcpuaff.exe

» File
File Details
Overview
Analysis

setcpuaff.exe

The module setcpuaff.exe has been detected as Risk.CoinMiner

Remove setcpuaff.exe

File Details

Main Info:

MD5:	cfad2468b77f612a1c6cc24f85d08b53
Size:	100 KB
First Published:	2018-03-12 20:23:58 (6 years ago)
Latest Published:	2020-01-14 20:53:22 (4 years ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2020-01-14 20:53:22 (4 years ago)

Overview

Digital Signature

Signed By:	NICEHASH, d.o.o.
Status:	Valid

Common Places:

%localappdata%\programs\nicehash miner 2

%programfiles%\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\appdata\local\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\tlbhwxkr5d6halkd\users\money\appdata\local\application data\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\local settings\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\appdata\local\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\appdata\local\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\iyaiqxrij72judhu\users\money\local settings\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\tlbhwxkr5d6halkd\users\money\local settings\application data\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

%sysdrive%\uyuhbu29g7oxa5wh\qdkfwcgq27po3l4w\users\money\local settings\application data\application data\application data\application data\application data\application data\application data\programs\nicehash miner 2

Geography:

	21.2%
	20.0%
	9.8%
	3.6%
	3.6%
	3.1%
	2.9%
	2.6%
	2.1%
	1.9%
	1.9%
	1.4%
	1.4%
	1.4%
	1.2%
	1.2%
	1.2%
	1.2%
	1.2%
	1.2%
	1.0%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.7%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.5%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%
	0.2%

OS Version:

Windows 10	84.3%
Windows 7	9.6%
Windows 8.1	4.4%
Windows Server 2008 R2	0.9%
Windows Server 2012	0.5%
Windows Server 2012 R2	0.2%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00001398

PE Sections:

Name	Size of data	MD5
.text	49664	e269a66d37da1ae744179c2bc6a21048
.rdata	26112	35234fc849386a8090a436b0ec8a9339
.data	5632	ae646dc2ff7e31ad18a67f944c0a0cc5
.pdata	2560	b600d023457c4c355ba7e1bbe4f35e48
.rsrc	1024	36736404ebf7099ea130a8b2693ade25
.reloc	1536	3c90218cdaea1684ee9d785f7b29532c

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for setcpuaff.exe

copyright for information about setcpuaff.exe