Trojan.Bitcoinminer.E

By CagedTech in Trojans

Threat Scorecard

Popularity Rank:	10,985
Threat Level:	80 % (High)
Infected Computers:	989

First Seen:	May 5, 2017
Last Seen:	February 11, 2026
OS(es) Affected:	Windows

Table of Contents

Analysis Report

General information

Family Name:	Trojan.Bitcoinminer.E
Packers:	UPX
Signature status:	No Signature

Known Samples

MD5: d2688719990c8f4e0225e7b7a6cd3de7

SHA1: 5060201d3f1c93799b1c888b0b8e8ed3eb1d0da4

SHA256: 7D6E210F147534A21CFA0009A572219580EB3D836F064E0BCE83A630A39186E7

File Size: 2.20 MB, 2196992 bytes

MD5: 92af77d3e464ad008cd4266fc3a14710

SHA1: 2cb7122210d5165a6cf5d9faad9955283b6e6fbb

SHA256: 296B635EE71720993376702616AA895FF0E7FF9DD6760A60347C9801C7E74922

File Size: 2.20 MB, 2196992 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have relocations information
File doesn't have resources
File doesn't have security information
File has been packed
File has exports table
File has TLS information
File is 32-bit executable
File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)

File is either console or GUI application
File is Native application (NOT .NET application)
IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Traits

No Version Info
packed
x86

Block Information

Total Blocks:	10,137
Potentially Malicious Blocks:	1,211
Whitelisted Blocks:	8,926
Unknown Blocks:	0

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x x x 0 x x 0 x 0 x x x 0 x x x x 0 x x 0 x 0 x x x x 0 0 x x x x 0 x x x x 0 0 x x 0 0 x x x x x x x x x x x x 0 x x x 0 x 0 0 0 x x 0 0 0 x x x x x x x x x x 0 0 0 x x 0 x 0 0 x x x x x x x x 0 x x x 0 x 0 x 0 0 0 x x x x 0 x 0 0 0 x 0 0 0 0 x 0 x x 0 0 0 0 x x 0 x 0 x x x x 0 x 0 x x 0 x x 0 x x 0 0 x x x x x x x 0 x x 0 x 0 x x x 0 x 0 0 x x x x x x 0 x x x x x x 0 x x x 0 x 0 0 0 0 0 x x 0 0 0 x x x 0 0 0 0 x x x x x 0 x 0 x x x x 0 x 0 x x x x 0 0 x 0 0 0 0 x x x 0 0 0 0 0 0 x 0 0 x x 0 x x 0 0 x x x 0 0 0 0 x x x x 0 0 x 0 x x x x 0 0 0 0 0 x x x 0 0 x 0 0 x x x x x 0 x x x x x 0 x x x 0 x x 0 x 0 x 0 0 x 0 x x x 0 x x x 0 x x 0 x x x x x 0 x x x x 0 x x 0 x 0 0 x x x x x x x x 0 0 x x x 0 0 0 x x x x x x x 0 x 0 x x x x x x x 0 0 0 0 x x 0 0 x 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x 0 0 0 x x 0 0 x x 0 x 0 0 0 0 x 0 0 0 x x x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 x x 0 x 0 x 0 x 0 0 x x 0 x 0 0 0 0 0 0 x x x 0 0 0 0 0 x 0 0 0 0 0 x 0 0 x x 0 x x 0 x 0 x 0 x 0 0 0 0 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 x 0 x x x 0 x x x x 0 0 x 0 x 0 0 x x 0 x x x 0 x 0 x 0 x 0 x 0 0 0 0 0 0 0 0 0 x 0 0 x 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 x 0 0 0 0 0 x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 0 0 0 x 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x x x 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x 0 x x 0 x 0 x 0 0 0 x 0 0 0 0 0 0 x 0 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 x 0 0 0 0 x 0 x 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 x 0 0 x 0 x 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x 0 x 0 0 0 0 0 0 0 0 0 0 x x x 0 0 x x x 0 0 0 x x 0 x x x 0 x 0 x x x 0 0 x x x 0 0 0 0 x 0 0 0 x 0 x 0 x x x x 0 0 0 0 0 0 0 x x x 0 x x x 0 0 0 x 0 0 x x x x x 0 0 x x 0 0 0 0 x x x 0 0 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 x 0 0 0 0 0 x x 0 x 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x 0 0 0 0 0 0 x x 0 x 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 x x 0 0 0 x 0 x 0 0 0 0 x 0 x x 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x 0 x x x 0 0 x x x 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 x 0 0 x 0 0 0 0 x x 0 0 x 0 0 0 0 0 0 0 1 0 0 0 1 0 1 0 0 0 x 1 0 0 x 0 0 0 0 x 0 0 0 x 0 x 0 x 0 0 0 x 0 x 0 x 0 x 0 x 0 0 0 0 0 0 x 0 x 0 x 0 0 0 0 0 x 0 x 0 x 0 x 0 0 0 0 0 x 0 0 0 x 0 0 0 0 0 x 0 0 0 0 0 x 0 x 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 0 x 0 0 0 0 0 x x 0 x 0 0 0 x x x 0 x x x x x x x x x x x x x 0 x x x x 0 0 x 0 x 0 0 x 0 x 0 0 0 x 0 0 0 0 0 0 x 0 0 0 0 0 0 x x x 0 x 0 0 0 x x 0 0 0 0 0 1 1 1 0 0 0 x x x x x 0 0 0 0 x x x x x 0 0 0 0 x 0 0 x 0 x x 0 x x x x 0 0 0 x x x 0 0 0 0 0 0 0 0 x 0 0 0 0 0

... Data truncated

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

Bitcoinminer.E

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Trojan.Bitcoinminer.E

Threat Scorecard

EnigmaSoft Threat Scorecard

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Traits

Block Information

Block Information

Visual Map

Similar Families

Similar Families

Submit Comment

Trending

W32.StuxnetQKY.Trojan

'.google File Extension' Ransomware

Cruiseocean1.xyz

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

How to Fix 'macOS cannot verify that this app is...

Discord Shows Black Screen when Sharing Screen