xmrig | 177f11eb1a74b42b99e3befc3f959c66589492f8155af9c99e5d3a0487b2b914

Analysis

max time kernel
134s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
11-11-2023 15:09

Target

NEAS.8945d0bd28bdb76dd27b6c97a57a2150.exe
Size

3.3MB
MD5

8945d0bd28bdb76dd27b6c97a57a2150
SHA1

fc8488c4bf47808e97315d8456992adb06c3bd61
SHA256

177f11eb1a74b42b99e3befc3f959c66589492f8155af9c99e5d3a0487b2b914
SHA512

3504c2b3e1b928424e83a7a8e3ca01dafca78d24c0c781392835afbd33569ff6cf457d767b4cd55e66cc690b9f10051a6dc0212077ac2ba81e485a5a07535cd9
SSDEEP

24576:1ezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9Lb00RaOpv:1ezaTF8FcNkNdfE0pZ9oztg00

Score

10^/10

xmrig miner upx

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/4440-0-0x00007FF7EB320000-0x00007FF7EB674000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/4440-0-0x00007FF7EB320000-0x00007FF7EB674000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\NEAS.8945d0bd28bdb76dd27b6c97a57a2150.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.8945d0bd28bdb76dd27b6c97a57a2150.exe"
1⤵
PID:4440

memory/4440-0-0x00007FF7EB320000-0x00007FF7EB674000-memory.dmp

Filesize
3.3MB

Download