How to remove xm86.exe
xm86.exe
The module xm86.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | 2a29e6425806be3e370e8fa270f96b51 |
| Size: | 689 KB |
| First Published: | 2017-08-07 13:13:09 (6 years ago) |
| Latest Published: | 2020-08-19 11:43:00 (3 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2020-08-19 11:43:00 (3 years ago) |
Common Places:
| %sysdrive%\xmr\coin2 |
| %commonappdata% |
| %sysdrive%\xmr |
| %commonappdata% |
File Names:
| xm86.exe |
| xmrigx32.exe |
| rigx32.exe |
Geography:
| 61.1% | ||
| 22.2% | ||
| 11.1% | ||
| 5.6% |
OS Version:
| Windows 10 | 61.1% | |
| Windows 7 | 22.2% | |
| Windows Server 2012 R2 | 11.1% | |
| Windows 8.1 | 5.6% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000014e0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 538624 | 0faa3a2fa7b6925ef87c1f923806c144 |
| .data | 1024 | 36f4d5348a8541c1936b24f534ebf34c |
| .rdata | 54272 | 3b5b64ee7a51cdb1f94f03027cd15984 |
| .eh_fram | 83456 | 2c0f5d71a02746ddec6c48972f56091f |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 9216 | e360772e418e5e01a2a8348262c04a59 |
| .CRT | 512 | fa2d2d6fbdf5f62a9813366753a77499 |
| .tls | 512 | b52677a9dd4aee6dc09d020211a79bf1 |
| .rsrc | 17360 | bb7089994d06b030e7d3188328e48dba |
More information:
Download GridinSoft
Anti-Malware - Removal tool for xm86.exe
