How to remove xmrig.exe
xmrig.exe
The module xmrig.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | df51a17785f875cc51d96996355228d7 |
| Size: | 4 MB |
| First Published: | 2020-09-20 09:51:59 (5 years ago) |
| Latest Published: | 2021-01-12 14:04:50 (4 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2021-01-12 14:04:50 (4 years ago) |
Common Places:
| %sysdrive%\proba 2 nice hash\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %localappdata%\programs\nicehash miner\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %sysdrive%\perflogs\nhm_windows_3.0.1.0\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %localappdata%\programs\nicehash miner\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %appdata%\salad\plugin-bin |
| %localappdata%\programs\nicehash miner\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %desktop%\майнинг к\вин 10\nhm_windows_3.0.4.4\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %desktop%\майнинг к\nhm_windows_3.0.4.4\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
| %desktop%\майнинг к\майнинг\nhm_windows_3.0.4.4\miner_plugins\0e0a7320-94ec-11ea-a64d-17be303ea466\bins\11.2 |
Geography:
| 55.6% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x0029b6d8 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3070464 | 33e1b087f7c47d1cdce0315375c034c5 |
| .rdata | 1186816 | b8f69e417d4c816679c090828b4fa124 |
| .data | 70144 | d8b6e125db776ce824e28ece9bf08908 |
| .pdata | 125440 | c72508da88e8c80ed8548924b8990bca |
| _RANDOMX | 2048 | 4c9ad32e381e3b0d5fe17bbaafaae2bf |
| _SHA3_25 | 2560 | c14f9aad5e95192cd7523ba6675549fd |
| _TEXT_CN | 6656 | 6a7f77e47f77f65bef85036ae5a71106 |
| _TEXT_CN | 4608 | 409bf3f918f2402291cb56c2e9354b47 |
| _RDATA | 512 | 24abf5baa84e8b5b798ecdde322b9ba3 |
| .rsrc | 23040 | c90405821b0f3f195ba8fdf04828aea4 |
| .reloc | 34304 | 1dcf975c2806eff9720b4b6d58db437f |
More information:
Download GridinSoft
Anti-Malware - Removal tool for xmrig.exe
