How to remove xmrig.exe
xmrig.exe
The module xmrig.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | 606ce310d75ee688cbffaeae33ab4fee |
| Size: | 5 MB |
| First Published: | 2022-04-29 23:28:33 (3 years ago) |
| Latest Published: | 2023-07-21 23:44:46 (2 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2023-07-21 23:44:46 (2 years ago) |
Common Places:
| %localappdata%\microsoft\windows\inetcache\ie\0hiz1b7m\xmrig-6.17.0-msvc-win64[1].zip |
| %localappdata%\microsoft\windows\inetcache\ie\s89xlfep\xmrig-6.17.0-msvc-win64[1].zip |
| %localappdata%\programs\unmineable-miner-mfi\resources\miners\win32 |
Geography:
| 33.3% | ||
| 33.3% | ||
| 33.3% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x0034cf44 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3680768 | f5c0b8a64e665bf4912dd121c6674b11 |
| .rdata | 1512448 | 72d27fdbe33fc79064fb59052dab207b |
| .data | 64512 | b9cd9c2550df74cd96ddf9a3e4a28526 |
| .pdata | 129024 | ecdcf236593ce52a12afdd0f85dd87ea |
| _RANDOMX | 3584 | 9ee63642b94966ecb630ee0843e46b26 |
| _SHA3_25 | 2560 | c14f9aad5e95192cd7523ba6675549fd |
| _TEXT_CN | 10240 | afea7882aa31e5987db2f12b8933de56 |
| _TEXT_CN | 4608 | 409bf3f918f2402291cb56c2e9354b47 |
| _RDATA | 512 | bf2ffabb4de76365b889e225ba1f9c67 |
| .rsrc | 23040 | df97b8e3e13bd90b7c57b80094d5f985 |
| .reloc | 33280 | df9b62b97d7a73da41f432c5196793e3 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for xmrig.exe
