How to remove xmrig-amd-notls.exe
- File Details
- Overview
- Analysis
xmrig-amd-notls.exe
The module xmrig-amd-notls.exe has been detected as Risk.CoinMiner
File Details
Product Name: |
|
Company Name: |
|
MD5: |
ac60b53cd10bf1dcc78c5a95c94a9706 |
Size: |
977 KB |
First Published: |
2018-12-23 21:08:41 (6 years ago) |
Latest Published: |
2020-08-21 11:10:11 (4 years ago) |
Status: |
Risk.CoinMiner (on last analysis) |
|
Analysis Date: |
2020-08-21 11:10:11 (4 years ago) |
%sysdrive%\$recycle.bin\s-1-5-21-641390051-2544432917-3116335679-1000\$rx7vqz9.exe |
%sysdrive%\$recycle.bin\s-1-5-21-641390051-2544432917-3116335679-1000\$r7o1iay.exe |
%sysdrive%\$recycle.bin\s-1-5-21-641390051-2544432917-3116335679-1000\$ripv7qy.exe |
%temp%\rar$exa5024.28852 |
%temp%\rar$exa5024.29084 |
%desktop%\xmrig-amd-2.8.4懶人包.zip |
%desktop% |
Windows 10 |
57.1% |
|
Windows 7 |
42.9% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000140000000 |
Entry Address: |
0x0003f1d4 |
Name |
Size of data |
MD5 |
.text |
619520 |
0c893c63ffc9f5f0485662d42ca09de5 |
.rdata |
287744 |
8b7adcb83b6c44284488fe6230f0e758 |
.data |
35328 |
6de7fb0cc0b10da8f7f81cc42b78979b |
.pdata |
29184 |
a47fe4cb0b7374ba1b55925715de9a39 |
.rsrc |
23040 |
53864524555e4e3369ed8964c95c8a01 |
.reloc |
5120 |
e85f44f7cc6cd81d630c556a68fc76a8 |