home

cgminer-3.9.0-windows.7z

The file cgminer-3.9.0-windows.7z has been detected as a potentially unwanted program by 16 anti-malware scanners. This is a malicious Bitcoin miner. Bitcoin-mining malware is designed to force computers to generate Bitcoins for cybercriminals' use and consumes computing power. The file has been seen being downloaded from ck.kolivas.org.
MD5:
202b7287a7213ff718b6a18cbadd5b7f

SHA-1:
6e278486b8ef54ea8c4f7f03b31ed45d64ad1440

SHA-256:
9aa1118901563b419c91c8301a4e93f43fcb0d3ab98c03f78e2e9081aab90f5f

Scanner detections:
16 / 68

Status:
Potentially unwanted

Explanation:
The program will mine for BitCoins using the computer's GPU in the background and may be installed and run without the user's knowledge.

Analysis date:
11/24/2024 8:23:23 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
APPL/Bitcoinminer.Gen
3.6.1.96

avast!
Java:BitCoinMiner-A [PUP]
2014.9-150420

Baidu Antivirus
Hacktool.Win32.BitCoinMiner
4.0.3.15420

Comodo Security
UnclassifiedMalware
21639

Dr.Web
Threat.Undefined
9.0.1.05190

ESET NOD32
Win32/BitCoinMiner.BY potentially unsafe application
7.0.302.0

K7 AntiVirus
Trojan
13.202.15480

Kaspersky
not-a-virus:NetTool.Win32.Sniffer
15.0.0.543

Malwarebytes
PUP.Optional.Cgminer
v2015.04.20.04

NANO AntiVirus
Riskware.Win32.BtcMine.ctwksc
0.30.8.659

Panda Antivirus
Trj/CI.A
15.04.20.04

Qihoo 360 Security
Win32/Virus.Sniffer.b91
1.0.0.1015

Quick Heal
JAVA.Suspicious.Gen
4.15.14.00

Trend Micro House Call
TROJ_SPNV.03A614
7.2.110

Trend Micro
TROJ_SPNV.03A614
10.465.20

VIPRE Antivirus
Trojan.Win32.Generic
39028

File size:
2.2 MB (2,338,514 bytes)

Common path:
C:\users\{user}\downloads\cgminer-3.9.0-windows.7z

The file cgminer-3.9.0-windows.7z has been seen being distributed by the following URL.

http://ck.kolivas.org/apps/cgminer/.../cgminer-3.9.0-windows.7z

Remove cgminer-3.9.0-windows.7z - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.