Trojan

Trojan.BitCoinMiner.UPX removal instruction

Malware Removal

The Trojan.BitCoinMiner.UPX is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.BitCoinMiner.UPX virus can do?

  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

How to determine Trojan.BitCoinMiner.UPX?



File Info:

crc32: 47935D61
md5: 1eafe076f002b3ac00ef19f8d6c14400
name: 1EAFE076F002B3AC00EF19F8D6C14400.mlw
sha1: 67cc6847998b14ce0ca3ca8ded703de5ce8c0171
sha256: be83815b8b502dcce3fc8a255e733227745776af2f4ab32147d5305df6c60de0
sha512: 8f0d45bf24d97a234bbab710915217c04986bf705481daa86716efd735e19f47df3af7df9c9cd3a41bce00ed443309258dc10e321f04f8550dc0fd7af4005631
ssdeep: 24576:QADFg6sUvlu2XP86xJ4/26MoEjFL5iXVrJhOlmk60xkL4bRYi4tyDMWPrdqQ4cW:vzsSlLXfx+/9MjFYXVrvOlz6EVYLygW
type: PE32+ executable (DLL) (GUI) x86-64, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
FileVersion: 10.0.18362.1 (WinBuild.160101.0800)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 10.0.18362.1
FileDescription: Host Process for Windows  Services
OriginalFilename: test.dll
Translation: 0x0000 0x04b0

Trojan.BitCoinMiner.UPX also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CAT-QuickHealTrojan.Miner
ALYacDeepScan:Generic.Application.CoinMiner.1.7117F42D
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (W)
K7GWAdware ( 005577161 )
K7AntiVirusAdware ( 005577161 )
CyrenW64/Trojan.AYNF-7367
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win64/CoinMiner.PQ potentially unwanted
APEXMalicious
AvastWin64:CoinminerX-gen [Trj]
KasperskyHEUR:Trojan.Win32.Miner.vho
BitDefenderDeepScan:Generic.Application.CoinMiner.1.7117F42D
MicroWorld-eScanDeepScan:Generic.Application.CoinMiner.1.7117F42D
TencentWin32.Trojan.Miner.Ecbn
Ad-AwareDeepScan:Generic.Application.CoinMiner.1.7117F42D
SophosMal/Generic-S
ComodoMalware@#1cyyhpafsb8ss
VIPRETrojan.Win32.Generic!BT
TrendMicroCoinminer.Win64.MALXMR.GAIM
McAfee-GW-EditionBehavesLike.Win64.Fake.tc
FireEyeGeneric.mg.1eafe076f002b3ac
EmsisoftDeepScan:Generic.Application.CoinMiner.1.7117F42D (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan.Miner.mxw
WebrootW32.Coinminer.Gen
Antiy-AVLTrojan/Win32.Miner
MicrosoftPUA:Win32/Puasson.A!ac
ArcabitDeepScan:Generic.Application.CoinMiner.1.7117F42D
AegisLabTrojan.Win32.Miner.4!c
ZoneAlarmHEUR:Trojan.Win32.Miner.vho
GDataDeepScan:Generic.Application.CoinMiner.1.7117F42D
AhnLab-V3Unwanted/Win32.CoinMiner.R345828
McAfeeGenericRXAA-FA!1EAFE076F002
MAXmalware (ai score=81)
VBA32Trojan.Miner
MalwarebytesTrojan.BitCoinMiner.UPX
PandaTrj/Agent.AJS
TrendMicro-HouseCallCoinminer.Win64.MALXMR.GAIM
RisingTrojan.Miner!8.EA1 (CLOUD)
YandexTrojan.Miner!xyrcmEptwK8
MaxSecureTrojan.Malware.74632793.susgen
FortinetRiskware/Miner
AVGWin64:CoinminerX-gen [Trj]
Paloaltogeneric.ml
Qihoo-360Win64/Miner.Coinminer.HggASOUA

How to remove Trojan.BitCoinMiner.UPX?

Trojan.BitCoinMiner.UPX removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment