xmrig | a45f15609041cdf618bca3f38a4d71317f70c2b12af65194fa32d9fe333f2533

Analysis

max time kernel
141s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
11/11/2023, 18:56

Target

NEAS.e99a56cf98c986d6344ec61940e72fe0.exe
Size

3.3MB
MD5

e99a56cf98c986d6344ec61940e72fe0
SHA1

c29b493ec86b8ce9d4f494a9e9786ebbbf7c7186
SHA256

a45f15609041cdf618bca3f38a4d71317f70c2b12af65194fa32d9fe333f2533
SHA512

041267bc6b65fe802848e27a8ae6ec3f0996cad1cb0f1333da726f548cb0ac3464ab8d91b092c8125c50894e6c40de390441478c5c3012ec036d1611a76d7bde
SSDEEP

24576:5ezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbIqTk:5ezaTF8FcNkNdfE0pZ9oztkqo

Score

10^/10

xmrig miner upx

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/416-0-0x00007FF704AF0000-0x00007FF704E44000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/416-0-0x00007FF704AF0000-0x00007FF704E44000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\NEAS.e99a56cf98c986d6344ec61940e72fe0.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.e99a56cf98c986d6344ec61940e72fe0.exe"
1⤵
PID:416

memory/416-0-0x00007FF704AF0000-0x00007FF704E44000-memory.dmp

Filesize
3.3MB

Download