Multi-License Discount Quote

Change Region

English
Threat Database Trojans Trojan.Bitcoinminer.FDM

Trojan.Bitcoinminer.FDM

By CagedTech in Trojans

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 7
First Seen: May 30, 2024
Last Seen: December 29, 2025
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.Bitcoinminer.FDM
Signature status: No Signature

Known Samples

MD5: e8dd25013bba9551b3a53d40280dfa4b
SHA1: 1b8d2fca050fe5658c076db778c20f0591e93ee5
SHA256: 4BA71DD27FF57117F592B37460BFE2A3A6CDEC23BEBA201C79D3BE6C1EF1B353
File Size: 118.93 KB, 118934 bytes
MD5: 6db181c0ff29290645e55ffad81c1087
SHA1: 2bb79c727916da093de2c62d7f3fd2245b8ebd67
SHA256: 12B01DF9D12447D74969CD0AA82E9FFF93244B7855F3C5204E8E2F2CA2F8C36A
File Size: 114.84 KB, 114838 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have resources
  • File doesn't have security information
  • File is 32-bit executable
  • File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
  • File is either console or GUI application
  • File is Native application (NOT .NET application)
  • File is not packed
Show More
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Traits

  • 2+ executable sections
  • HighEntropy
  • No Version Info
  • x86

Block Information

Total Blocks: 98
Potentially Malicious Blocks: 4
Whitelisted Blocks: 74
Unknown Blocks: 20

Visual Map

x x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Bitcoinminer.FDM

Registry Modifications

Key::Value Data API Name
HKCU\software\microsoft\windows\currentversion\explorer\advanced::hidden  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\security center::antivirusoverride  RegNtPreCreateKey

Trending

Most Viewed

Loading...