How to remove trm_nimiq_proxy-win.exe
- File Details
- Overview
- Analysis
trm_nimiq_proxy-win.exe
The module trm_nimiq_proxy-win.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
ddb93bc7f51e4dcc4eb278f59fce04ee |
| Size: |
33 MB |
| First Published: |
2022-02-27 23:05:03 (4 years ago) |
| Latest Published: |
2026-04-11 23:00:56 (3 weeks ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2026-04-11 23:00:56 (3 weeks ago) |
| %sysdrive%\$recycle.bin\s-1-5-21-3415344354-166088467-4087669172-1004\$r2jzeuc.5-win |
| %profile%\dropbox\pc\downloads\teamredminer-v0.8.5-win.zip |
| %desktop% |
| %profile%\onedrive\escritorio\minero\teamredminer-v0.9.0-win |
| %profile%\downloads\teamredminer-v0.8.4-win.zip |
| %profile%\downloads\teamredminer-v0.8.2-win.zip |
| %sysdrive%\aid farhan\downloads\ethereum\teamredminer-v0.8.1-win.zip |
| %sysdrive% |
| %desktop% |
| %desktop%\eg |
|
53.8% |
|
|
15.4% |
|
|
15.4% |
|
|
7.7% |
|
|
7.7% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x000064d8 |
| Name |
Size of data |
MD5 |
| .text |
18880000 |
628847333ffe336e3796ec5f9ba319dc |
| .rdata |
13474304 |
d0756ef12f11ca0dc4dcf3a1b32d7742 |
| .data |
163840 |
bea4842c06bea0d5aabfa44f6b4954ab |
| .pdata |
908288 |
f4cda458f49e9b91132b2e0afa3f8bcb |
| .idata |
16384 |
db0265dea360f15d011e78f8934d0553 |
| .tls |
1024 |
3a326e37fb53365abafaea92cb735ad8 |
| .00cfg |
512 |
81e7904ddea780bff234fa8d60e4fab3 |
| .rsrc |
122880 |
7a2382f9ec563fb220317823b6de8fad |
| .reloc |
214528 |
77e6f2f0036c75a3721cc770834b748f |
