How to remove xmrigMiner.exe
- File Details
- Overview
- Analysis
xmrigMiner.exe
The module xmrigMiner.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7ad3b5d8ec51957f90b580b63a1a5183 |
| Size: |
4 MB |
| First Published: |
2021-01-06 10:32:11 (4 years ago) |
| Latest Published: |
2021-01-06 10:33:36 (4 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-01-06 10:33:36 (4 years ago) |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000 |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$rcmy3u6\xmrigcc-2.8.0-with_tls_and_gzip-mvc-win64.zip |
| %sysdrive%\$recycle.bin\s-1-5-21-2649899950-350314689-1133762106-1000\$rcmy3u6 |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x002890e4 |
| Name |
Size of data |
MD5 |
| .text |
2992640 |
b712620779ffaa594ec5c91eea350181 |
| .rdata |
914944 |
e69502eaa69c51a50aabc7290c9b61d1 |
| .data |
51200 |
5c6af9ded6cae7d9ada6bbb60a5be001 |
| .pdata |
121856 |
55b17fc92fdcefd4e273631834bd0b42 |
| _RANDOMX |
2048 |
4c9ad32e381e3b0d5fe17bbaafaae2bf |
| _TEXT_CN |
6656 |
26461c1f15ecfcc00cc5c3b5a9fb9b58 |
| _TEXT_CN |
4608 |
0362ea652b2983376e0e0cc673778192 |
| .rsrc |
130048 |
5dacdce785f953c2b43b9e53a6b398c1 |
| .reloc |
33280 |
5124ecaf79685b4af9459586f696fc0b |
