How to remove update-x64.exe
- File Details
- Overview
- Analysis
update-x64.exe
The module update-x64.exe has been detected as Risk.CoinMiner
File Details
Product Name: |
|
Company Name: |
|
MD5: |
ab7bd2b83f10283b39ec8ea66d31429a |
Size: |
6 MB |
First Published: |
2019-12-08 20:36:06 (5 years ago) |
Latest Published: |
2024-12-07 23:04:32 (7 months ago) |
Status: |
Risk.CoinMiner (on last analysis) |
|
Analysis Date: |
2024-12-07 23:04:32 (7 months ago) |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%windir%\debug |
%windir%\debug |
%sysdrive%\xmrig-5.0.1.rar |
%sysdrive% |
%sysdrive%\home\xmrig-5.0.1-gcc-win64.zip |
|
31.6% |
|
|
21.1% |
|
|
15.8% |
|
|
15.8% |
|
|
10.5% |
|
|
5.3% |
|
Windows 7 |
73.7% |
|
Windows Server 2008 R2 |
15.8% |
|
Windows 10 |
5.3% |
|
Windows Server 2016 |
5.3% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000000400000 |
Entry Address: |
0x000014a0 |
Name |
Size of data |
MD5 |
.text |
4956160 |
ed7fcc15adb8f0f91bc89d7243b2933c |
.data |
268288 |
fe2302546657ea66e5dc0c84f57b6e5d |
.rdata |
748032 |
7a0a4ddc15fa67c03df19e55a8d9f806 |
.pdata |
172032 |
4b96f0b628e7920dff599003512a3c0f |
.xdata |
204800 |
f1bb8c7629dd11dd434093872643029d |
.bss |
0 |
00000000000000000000000000000000 |
.idata |
17408 |
c38f388f1c788d5bbebbebc5f92a1a31 |
.CRT |
512 |
f6ce83728fbb416fef6558fc8afbd0da |
.tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
.rsrc |
23776 |
566cda19e40ff89caf223d0bb1d94e6b |