How to remove xmrigDaemon.exe
- File Details
- Overview
- Analysis
xmrigDaemon.exe
The module xmrigDaemon.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
64fc0756e838bd1f0fe2e21179e09db7 |
| Size: |
279 KB |
| First Published: |
2021-01-06 10:30:44 (4 years ago) |
| Latest Published: |
2021-01-06 10:35:01 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-01-06 10:35:01 (4 years ago) |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$rcmy3u6\xmrigcc-2.8.0-with_tls_and_gzip-gcc-win64(1).zip |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$rcmy3u6\new folder |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$r1h0rt7 |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$r1h0rt7\xmrigcc-2.8.0-with_tls_and_gzip-gcc-win64.zip |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000 |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000 |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$rcmy3u6\new folder\xmrigcc-2.8.0-with_tls_and_gzip-gcc-win64(1).zip |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x000014e0 |
| Name |
Size of data |
MD5 |
| .text |
112128 |
c92051f6b6e99b54ddac446b01948ace |
| .data |
512 |
10961810c948acadb4bf585fae89646b |
| .rdata |
17408 |
a8ce8b722df6ceb96dfaff95dd0886ee |
| .pdata |
10240 |
c84a1d4b2a7250ed4783ac7d40b94f90 |
| .xdata |
8192 |
7ac6dd8b71a6dddccaab404d4fae23e6 |
| .bss |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .idata |
4096 |
5371e4876ded4e1295fd923673368528 |
| .CRT |
512 |
2faf2de18463b71beab809eafd8bbe59 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
130584 |
6f978c3c27cff8c0189f62e30435c9f2 |
