About “Win32/CoinMiner.B potentially unwanted” infection

The Win32/CoinMiner.B potentially unwanted is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/CoinMiner.B potentially unwanted virus can do?

Authenticode signature is invalid

How to determine Win32/CoinMiner.B potentially unwanted?


File Info:
name: CDBB867E5110A3FE857B.mlw
path: /opt/CAPEv2/storage/binaries/f6194148f49c793bebbfae5ac116f25a8e1ce015164a41518eafd650291493a1
crc32: DE29A944
md5: cdbb867e5110a3fe857bb6ac645910f9
sha1: 7c20bccf177a95f71b93ff5bd94978a7307de154
sha256: f6194148f49c793bebbfae5ac116f25a8e1ce015164a41518eafd650291493a1
sha512: 8ac051e65e571bb5d057d290b17735797fa3d60ae750cbd9e4a9c6186a48a84911c82b61f6818a4c2d4c477ab8967077c1db7f8a62a427b4951e78651152c80e
ssdeep: 6144:SC46jgmjkWhSD6ZhDsm9ONOASq2ViGKAXTJnyKaEgFAUeVkusBLXx1oVtUGATbyj:r46jgmjkWhg6nICWO1jViGfNy1EgFAUg
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1BC443904E2F3E4F0DF720D74D47EE63EBF29452C9DA4DDA4F5988600A893925762E6C8
sha3_384: b0e483e9ce93fb252249a49d618bcad59b9d9130159b6114ff7813cc068eec9f73201e85fe48ee949a9038b4ffdd25ea
ep_bytes: 5589e583ec18c7042401000000ff1500
timestamp: 2011-09-11 05:47:54

Version Info:
0: [No Data]

Win32/CoinMiner.B potentially unwanted also known as:

Bkav	W32.AIDetectMalware
Lionic	Riskware.Win32.BitCoinMiner.1!c
DrWeb	Tool.BtcMine.162
ALYac	Trojan.GenericKD.39459626
Malwarebytes	Generic.Malware/Suspicious
Sangfor	Suspicious.Win32.Attribute.HighConfidence
Symantec	Trojan.Gen
ESET-NOD32	a variant of Win32/CoinMiner.B potentially unwanted
BitDefender	Trojan.GenericKD.39459626
NANO-Antivirus	Trojan.Win32.Miner.heazg
MicroWorld-eScan	Trojan.GenericKD.39459626
Avast	FileRepMalware [Trj]
Sophos	App/Generic-HM (PUA)
VIPRE	Trojan.GenericKD.39459626
McAfee-GW-Edition	Artemis!Trojan
FireEye	Trojan.GenericKD.39459626
Emsisoft	Trojan.GenericKD.39459626 (B)
Webroot	W32.Trojan.Gen
Antiy-AVL	RiskWare[RiskTool]/Win32.BitCoinMiner
Xcitium	Malware@#3bykjvcul2y5w
Arcabit	Trojan.Generic.D25A1B2A
GData	Trojan.GenericKD.39459626
VBA32	Trojan.Miner
Cylance	unsafe
Panda	Generic Malware
Rising	Trojan.MineBicoin!8.456 (TFE:5:29uoXRakp6)
Ikarus	Trojan.Win32.Miner
AVG	FileRepMalware [Trj]
DeepInstinct	MALICIOUS

How to remove Win32/CoinMiner.B potentially unwanted?

Win32/CoinMiner.B potentially unwanted removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X