home

cgminer-3.8.1-windows.zip

The file cgminer-3.8.1-windows.zip has been detected as a potentially unwanted program by 11 anti-malware scanners. This is a malicious Bitcoin miner. Bitcoin-mining malware is designed to force computers to generate Bitcoins for cybercriminals' use and consumes computing power. The file has been seen being downloaded from ck.kolivas.org.
MD5:
f9e701f87a20168dbdd06d53631fbfea

SHA-1:
a4abc6656455e884a07ff11afc68b2b1bd4f890e

SHA-256:
740fed83aacd204dca60eb68b4693182125342c97ba4415ed60333309471e9a4

Scanner detections:
11 / 68

Status:
Potentially unwanted

Explanation:
The program will mine for BitCoins using the computer's GPU in the background and may be installed and run without the user's knowledge.

Analysis date:
4/19/2024 4:49:27 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
APPL/Graftor.120316.35
7.11.125.248

avast!
Java:BitCoinMiner-A [PUP]
2014.9-140121

Baidu Antivirus
Trojan.Win32.BitCoinMiner
4.0.3.14121

ESET NOD32
Win32/BitCoinMiner.AF (variant)
8.9315

K7 AntiVirus
Trojan
13.175.10899

Kaspersky
not-a-virus:NetTool.Win32.Sniffer
14.0.0.4434

Malwarebytes
PUP.Optional.Cgminer
v2014.01.21.04

McAfee
Artemis!85C57C2FA024
5600.7244

Sophos
Generic PUA KE
4.96

Trend Micro House Call
TROJ_GEN.F47V1111
7.2.21

ViRobot
Trojan.Win32.S.BitCoinMiner.881166.A
2011.4.7.4223

File size:
2.7 MB (2,812,798 bytes)

Common path:
C:\users\{user}\downloads\cgminer-3.8.1-windows.zip

The file cgminer-3.8.1-windows.zip has been seen being distributed by the following URL.

http://ck.kolivas.org/apps/.../cgminer-3.8.1-windows.zip

Remove cgminer-3.8.1-windows.zip - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.