Trojan

What is “Trojan.Win32.BitCoinMiner.efs”?

Malware Removal

The Trojan.Win32.BitCoinMiner.efs is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.BitCoinMiner.efs virus can do?

  • The binary likely contains encrypted or compressed data.
  • Anomalous binary characteristics

How to determine Trojan.Win32.BitCoinMiner.efs?



File Info:

crc32: 64398B8B
md5: 3b8a4acc363b6410d1de866c159ed7e3
name: 3B8A4ACC363B6410D1DE866C159ED7E3.mlw
sha1: e9338a4e3c26cdb902564013188cf33cecf1b76e
sha256: e3159e4332863525b04b2a1c3dc01df2a62de858fe03a4a4a0b8ec5c632b363b
sha512: d0797eea376307e24b42a6486f021ab86062ef7cba9016e0fe2774b195e90ade86cef419648ea7d5421ed92086ebca211ce04c478dc875f40b7c9f3c6ba17375
ssdeep: 12288:7WrOyQ5Bsku4A2mwbFDh2agW3Ya17JnQEEvdFi+DBEstQsgkma:arOf+4A2mwbFDh2agWt17JQbvdZBE6y
type: PE32+ executable (GUI) x86-64, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: ConHost
FileVersion: 63, 21, 17, 22

CompanyName: Microsoft Corporation
ProductName: Microsoftxa9 Windowsxa9 Operating System
ProductVersion: 62.63.84.20
FileDescription: Windows System Service Pack
OriginalFilename: CONHOST.EXE
Translation: 0x0409 0x04b0

Trojan.Win32.BitCoinMiner.efs also known as:

K7AntiVirusTrojan ( 0054029f1 )
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
DrWebTrojan.BtcMine.3118
CynetMalicious (score: 100)
ALYacTrojan.GenericKDZ.50624
CylanceUnsafe
ZillyaTrojan.Kryptik.Win32.1527790
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (D)
AlibabaTrojan:Win32/BitCoinMiner.c39349c1
K7GWTrojan ( 0054029f1 )
Cybereasonmalicious.c363b6
SymantecTrojan.Gen.2
ESET-NOD32a variant of Win64/Kryptik.BTQ
APEXMalicious
AvastWin64:TrojanX-gen [Trj]
KasperskyTrojan.Win32.BitCoinMiner.efs
BitDefenderTrojan.GenericKDZ.50624
NANO-AntivirusTrojan.Win64.BitCoinMiner.fnuqnc
MicroWorld-eScanTrojan.GenericKDZ.50624
TencentWin32.Trojan.Generic.Lmbi
Ad-AwareTrojan.GenericKDZ.50624
SophosMal/Generic-S
ComodoMalware@#18mksnnc7mwec
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win64.Trojan.bc
FireEyeGeneric.mg.3b8a4acc363b6410
EmsisoftTrojan.GenericKDZ.50624 (B)
JiangminTrojan.BitCoinMiner.gu
AviraTR/CoinMiner.Gen
Antiy-AVLTrojan/Generic.ASMalwS.28C9C79
MicrosoftTrojan:Win64/Injector.CD
GDataTrojan.GenericKDZ.50624
AhnLab-V3Trojan/Win.Generic.R437447
McAfeeArtemis!3B8A4ACC363B
MAXmalware (ai score=100)
VBA32Trojan.BtcMine
MalwarebytesTrojan.FakeMS
PandaTrj/CI.A
YandexTrojan.BitCoinMiner!pjOnpxiA7WU
IkarusTrojan.Win32.Crypt
FortinetW32/Generic.AC.42C0D4
AVGWin64:TrojanX-gen [Trj]
Paloaltogeneric.ml

How to remove Trojan.Win32.BitCoinMiner.efs?

Trojan.Win32.BitCoinMiner.efs removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment