How to remove xmrig.exe
xmrig.exe
The module xmrig.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | 13272bc8e45d405ae680f95a38b74373 |
| Size: | 4 MB |
| First Published: | 2021-01-09 03:55:34 (3 years ago) |
| Latest Published: | 2024-04-16 23:07:08 (2 weeks ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2024-04-16 23:07:08 (2 weeks ago) |
Overview
| Signed By: | H-BIT, d.o.o |
| Status: | Valid |
Common Places:
| %profile%\onedrive |
| %profile% |
| %sysdrive%\nicehash |
| %profile% |
| %desktop% |
| %profile% |
| %profile% |
| %sysdrive%\nicehash |
| %sysdrive%\nicehash |
Geography:
| 30.0% | ||
| 30.0% | ||
| 10.0% | ||
| 10.0% | ||
| 10.0% | ||
| 10.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x002c3518 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3237376 | 94187d3a4e63e6b025c530efde59c831 |
| .rdata | 1209344 | 6584a8751e5cc87ab60717415af348c8 |
| .data | 70656 | 6911417eb634b2398f0c8126e3bb2386 |
| .pdata | 130560 | 1306e330c19f4616403d30ab09755cda |
| _RANDOMX | 3072 | 2d064068efaf1cce84dfd050ac9137d1 |
| _SHA3_25 | 2560 | c14f9aad5e95192cd7523ba6675549fd |
| _TEXT_CN | 6656 | 6a7f77e47f77f65bef85036ae5a71106 |
| _TEXT_CN | 4608 | 409bf3f918f2402291cb56c2e9354b47 |
| _RDATA | 512 | 30e80e4de77f6fc3806f06a9335d4d5f |
| .rsrc | 23040 | 5e8fe09f65f6d2b2cd99fbbe936dd3c5 |
| .reloc | 34816 | a9cafc00c34d4f55c7ed28d6e964aba5 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for xmrig.exe
