xmrig | 2d73fe715a8d6c62a160a07ce21986521e1a8ff2caf91d9de511c41959ff5c7c

Analysis

max time kernel
134s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
25/05/2024, 12:54

Target

7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe
Size

675KB
MD5

7204af867de782c46804f1446ed31ac1
SHA1

60e4429398607d1d485e496bfd119a2e9c5b59c9
SHA256

2d73fe715a8d6c62a160a07ce21986521e1a8ff2caf91d9de511c41959ff5c7c
SHA512

7daf08079281a6f720aadcdcb90be0902e1bda7afdc9f43793b8ae2b73359890384b31053a2a8784a07d418e356101fd251f042c8a5b6f29bedb09dbd3c4de0b
SSDEEP

12288:+Qh9bZObbAVsTTuhHdbnBo9nb/UtsnhiMyp/C61yPf:+QzYgGWdF8gC8CV3

Score

10^/10

xmrig miner upx

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/3892-2-0x00007FF725010000-0x00007FF72544D000-memory.dmp	xmrig

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/3892-0-0x00007FF725010000-0x00007FF72544D000-memory.dmp	upx
behavioral2/memory/3892-2-0x00007FF725010000-0x00007FF72544D000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\7204af867de782c46804f1446ed31ac1_JaffaCakes118.exe"
1⤵
PID:3892

memory/3892-0-0x00007FF725010000-0x00007FF72544D000-memory.dmp

Filesize
4.2MB

Download
memory/3892-2-0x00007FF725010000-0x00007FF72544D000-memory.dmp

Filesize
4.2MB

Download