How to remove xmrig287.exe

» File
File Details
Overview
Analysis

xmrig287.exe

The module xmrig287.exe has been detected as Trojan.CoinMiner

xmrig287.exe

Remove xmrig287.exe

File Details

Main Info:

Product Name:	XMRig
Company Name:	www.xmrig.com
MD5:	b706ab08fa80004cd775f1acc71d90fa
Size:	4 MB
First Published:	2019-12-11 04:12:00 (5 years ago)
Latest Published:	2021-11-29 21:19:27 (3 years ago)

Analysis:

Status:	Trojan.CoinMiner (on last analysis)
Analysis Date:	2021-11-29 21:19:27 (3 years ago)

Common Places:

%windir%

%desktop%

%windir%

%windir%

%desktop%\mine\allcoins.pw.rar

%sysdrive%\miner

%windir%

%windir%

%windir%

%desktop%

Geography:

	55.6%
	11.1%
	8.3%
	5.6%
	5.6%
	2.8%
	2.8%
	2.8%
	2.8%
	2.8%

OS Version:

Windows 7	47.4%
Windows 10	44.7%
Windows 8.1	5.3%
Windows Server 2016	2.6%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x001ff284

PE Sections:

Name	Size of data	MD5
.text	3091968	d261c2e6ce33824ba485b4c5c33dd6f2
.rdata	939008	b66741cbe2063d79681bad2faf1bb979
.data	281088	7177780ca8736be76dcdc023b98379e9
.pdata	129024	b127d62d2b8cdb82b5fd20d2ad7139d6
_RANDOMX	1536	d9024f8fd040694ff6e16174a3240aca
_TEXT_CN	6656	6a7f77e47f77f65bef85036ae5a71106
_TEXT_CN	4608	409bf3f918f2402291cb56c2e9354b47
.rsrc	23040	d89b1cb07ca8aac6c4d42e498bd25f95
.reloc	33280	8e235a299870028410f37915ddad4ffc

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for xmrig287.exe

copyright for information about xmrig287.exe