How to remove update-x64.exe
- File Details
- Overview
- Analysis
update-x64.exe
The module update-x64.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
ab7bd2b83f10283b39ec8ea66d31429a |
| Size: |
6 MB |
| First Published: |
2019-12-08 20:36:06 (5 years ago) |
| Latest Published: |
2024-12-07 23:04:32 (7 months ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2024-12-07 23:04:32 (7 months ago) |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %windir%\debug |
| %windir%\debug |
| %sysdrive%\xmrig-5.0.1.rar |
| %sysdrive% |
| %sysdrive%\home\xmrig-5.0.1-gcc-win64.zip |
|
31.6% |
|
|
21.1% |
|
|
15.8% |
|
|
15.8% |
|
|
10.5% |
|
|
5.3% |
|
| Windows 7 |
73.7% |
|
| Windows Server 2008 R2 |
15.8% |
|
| Windows 10 |
5.3% |
|
| Windows Server 2016 |
5.3% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x000014a0 |
| Name |
Size of data |
MD5 |
| .text |
4956160 |
ed7fcc15adb8f0f91bc89d7243b2933c |
| .data |
268288 |
fe2302546657ea66e5dc0c84f57b6e5d |
| .rdata |
748032 |
7a0a4ddc15fa67c03df19e55a8d9f806 |
| .pdata |
172032 |
4b96f0b628e7920dff599003512a3c0f |
| .xdata |
204800 |
f1bb8c7629dd11dd434093872643029d |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
17408 |
c38f388f1c788d5bbebbebc5f92a1a31 |
| .CRT |
512 |
f6ce83728fbb416fef6558fc8afbd0da |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
23776 |
566cda19e40ff89caf223d0bb1d94e6b |
