How to remove xmrig.exe
xmrig.exe
The module xmrig.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | XMRig |
| Company Name: | www.xmrig.com |
| MD5: | ea662ed9dfc4c0a04f4c3380c42d7a05 |
| Size: | 2 MB |
| First Published: | 2020-05-28 12:56:28 (5 years ago) |
| Latest Published: | 2021-12-23 21:28:42 (3 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2021-12-23 21:28:42 (3 years ago) |
Common Places:
| %system% |
| %system% |
| %system% |
| %sysdrive%\$recycle.bin |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
Geography:
| 81.5% | ||
| 7.4% | ||
| 7.4% | ||
| 3.7% |
OS Version:
| Windows 10 | 85.2% | |
| Windows 8.1 | 7.4% | |
| Windows 7 | 3.7% | |
| Windows Server 2012 R2 | 3.7% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000000400000 |
| Entry Address: | 0x000014f0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2075136 | 15b1377a54371de74a6e6e71e5b53093 |
| .data | 16384 | edf0b122ad9906a14aeeccd16d82f5f4 |
| .rdata | 189952 | 19bfcfed7a3d2afceedab4c9c7c52ab9 |
| .pdata | 79872 | b9beb492833cba1760aeda1fcb183a0e |
| .xdata | 114688 | ef1263dfa720cb2dbc53bb8c2af4d8cf |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 14848 | 66a1d38b9443128213511cd9689726a4 |
| .CRT | 512 | 90889814ce0e2645e05614c60e60f002 |
| .tls | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 23784 | 50cb79ad77ff8073b3afa904c9d067f9 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for xmrig.exe
