xmrig | 2d73fe715a8d6c62a160a07ce21986521e1a8ff2caf91d9de511c41959ff5c7c

Analysis

max time kernel
117s
max time network
123s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
25-05-2024 12:54

Target

7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe
Size

675KB
MD5

7204af867de782c46804f1446ed31ac1
SHA1

60e4429398607d1d485e496bfd119a2e9c5b59c9
SHA256

2d73fe715a8d6c62a160a07ce21986521e1a8ff2caf91d9de511c41959ff5c7c
SHA512

7daf08079281a6f720aadcdcb90be0902e1bda7afdc9f43793b8ae2b73359890384b31053a2a8784a07d418e356101fd251f042c8a5b6f29bedb09dbd3c4de0b
SSDEEP

12288:+Qh9bZObbAVsTTuhHdbnBo9nb/UtsnhiMyp/C61yPf:+QzYgGWdF8gC8CV3

Score

10^/10

xmrig miner upx

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral1/memory/1664-2-0x000000013F510000-0x000000013F94D000-memory.dmp	xmrig

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/1664-0-0x000000013F510000-0x000000013F94D000-memory.dmp	upx
behavioral1/memory/1664-2-0x000000013F510000-0x000000013F94D000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe"
1⤵
PID:1664

memory/1664-0-0x000000013F510000-0x000000013F94D000-memory.dmp

Filesize
4.2MB

Download
memory/1664-2-0x000000013F510000-0x000000013F94D000-memory.dmp

Filesize
4.2MB

Download