Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

windows-solo.ps1

windows10-1703-x64

8

windows-solo.ps1

windows10-2004-x64

8

windows-solo.ps1

windows11-21h2-x64

8

Analysis

  • max time kernel
    1791s
  • max time network
    1794s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/07/2024, 17:10 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    windows-solo.ps1

  • Size

    511B

  • MD5

    2b15e6dd22a7a73c8a72739110467e25

  • SHA1

    1f93f8a881358cc8fc61b84bab504cb94cb7a294

  • SHA256

    6e1543e7b97c225182680bac52f31ad86d2243979c30b37d8a932b9311c214c8

  • SHA512

    efb67124e5f22e6f889c3da0feee4a1429db80a4c5c8a67ed04904a2415c4b27b3c200c5e7063ae32a4e40e1aa80fa69d80d64ec2ceef4312e73b207a0c239fe

Score
8/10
execution

Malware Config

Signatures

  • Blocklisted process makes network request 2 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 8 IoCs
  • Command and Scripting Interpreter: PowerShell 1 TTPs 1 IoCs

    Using powershell.exe command.

    execution
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -ExecutionPolicy bypass -File C:\Users\Admin\AppData\Local\Temp\windows-solo.ps1
    1⤵
    • Blocklisted process makes network request
    • Command and Scripting Interpreter: PowerShell
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of WriteProcessMemory
    PID:3772
    • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\cpuminer.exe
      "C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\cpuminer.exe" -a yespowersugar -o stratum+tcp://yespowerSUGAR.mine.zergpool.com:6535 -u sugar1qnw8fvx7qa67v78qwpwp6yerk67quv7k6vhm9us -p c=SUGAR,mc=SUGAR,m=solo,ID=Windows
      2⤵
      • Executes dropped EXE
      • Loads dropped DLL
      PID:3920

Network

  • flag-us
    DNS
    github.com
    powershell.exe
    Remote address:
    8.8.8.8:53
    Request
    github.com
    IN A
    Response
    github.com
    IN A
    20.26.156.215
  • flag-us
    DNS
    github.com
    powershell.exe
    Remote address:
    8.8.8.8:53
    Request
    github.com
    IN A
  • flag-us
    DNS
    github.com
    powershell.exe
    Remote address:
    8.8.8.8:53
    Request
    github.com
    IN A
  • flag-us
    DNS
    github.com
    powershell.exe
    Remote address:
    8.8.8.8:53
    Request
    github.com
    IN A
  • flag-us
    DNS
    76.32.126.40.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    76.32.126.40.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    0.204.248.87.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    0.204.248.87.in-addr.arpa
    IN PTR
    Response
    0.204.248.87.in-addr.arpa
    IN PTR
    https-87-248-204-0lhrllnwnet
  • flag-gb
    GET
    https://github.com/cpu-pool/cpuminer-opt-yespowersugar-sugarchain/releases/download/1.4/cpuminer-opt-yespowersugar-sugarchain-win64.zip
    powershell.exe
    Remote address:
    20.26.156.215:443
    Request
    GET /cpu-pool/cpuminer-opt-yespowersugar-sugarchain/releases/download/1.4/cpuminer-opt-yespowersugar-sugarchain-win64.zip HTTP/1.1
    User-Agent: Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) WindowsPowerShell/5.1.19041.1237
    Host: github.com
    Connection: Keep-Alive
    Response
    HTTP/1.1 302 Found
    Server: GitHub.com
    Date: Sun, 14 Jul 2024 17:14:00 GMT
    Content-Type: text/html; charset=utf-8
    Vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
    Location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/244588262/c0630f00-5d47-11ea-9546-3607b8a380fc?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20240714%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240714T171400Z&X-Amz-Expires=300&X-Amz-Signature=711937a288336437321fad550c5e687f5a226c2ee58dc8e608603743c202c2ea&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=244588262&response-content-disposition=attachment%3B%20filename%3Dcpuminer-opt-yespowersugar-sugarchain-win64.zip&response-content-type=application%2Foctet-stream
    Cache-Control: no-cache
    Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
    X-Frame-Options: deny
    X-Content-Type-Options: nosniff
    X-XSS-Protection: 0
    Referrer-Policy: no-referrer-when-downgrade
    Content-Security-Policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
    Content-Length: 0
    X-GitHub-Request-Id: F051:1EB0B0:B29DBF:CDE75C:66940762
  • flag-us
    DNS
    88.156.103.20.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    88.156.103.20.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    objects.githubusercontent.com
    powershell.exe
    Remote address:
    8.8.8.8:53
    Request
    objects.githubusercontent.com
    IN A
    Response
    objects.githubusercontent.com
    IN A
    185.199.108.133
    objects.githubusercontent.com
    IN A
    185.199.109.133
    objects.githubusercontent.com
    IN A
    185.199.110.133
    objects.githubusercontent.com
    IN A
    185.199.111.133
  • flag-us
    GET
    https://objects.githubusercontent.com/github-production-release-asset-2e65be/244588262/c0630f00-5d47-11ea-9546-3607b8a380fc?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20240714%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240714T171400Z&X-Amz-Expires=300&X-Amz-Signature=711937a288336437321fad550c5e687f5a226c2ee58dc8e608603743c202c2ea&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=244588262&response-content-disposition=attachment%3B%20filename%3Dcpuminer-opt-yespowersugar-sugarchain-win64.zip&response-content-type=application%2Foctet-stream
    powershell.exe
    Remote address:
    185.199.108.133:443
    Request
    GET /github-production-release-asset-2e65be/244588262/c0630f00-5d47-11ea-9546-3607b8a380fc?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20240714%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240714T171400Z&X-Amz-Expires=300&X-Amz-Signature=711937a288336437321fad550c5e687f5a226c2ee58dc8e608603743c202c2ea&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=244588262&response-content-disposition=attachment%3B%20filename%3Dcpuminer-opt-yespowersugar-sugarchain-win64.zip&response-content-type=application%2Foctet-stream HTTP/1.1
    User-Agent: Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) WindowsPowerShell/5.1.19041.1237
    Host: objects.githubusercontent.com
    Connection: Keep-Alive
    Response
    HTTP/1.1 200 OK
    Connection: keep-alive
    Content-Length: 13685187
    Content-Type: application/octet-stream
    Last-Modified: Tue, 07 Dec 2021 11:01:18 GMT
    ETag: "0x8D9B970E5963AAA"
    Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
    x-ms-request-id: 3d70c24b-001e-0015-6de3-d5f6e6000000
    x-ms-version: 2020-10-02
    x-ms-creation-time: Tue, 17 Aug 2021 09:21:37 GMT
    x-ms-lease-status: unlocked
    x-ms-lease-state: available
    x-ms-blob-type: BlockBlob
    Content-Disposition: attachment; filename=cpuminer-opt-yespowersugar-sugarchain-win64.zip
    x-ms-server-encrypted: true
    Via: 1.1 varnish, 1.1 varnish
    Accept-Ranges: bytes
    Date: Sun, 14 Jul 2024 17:14:12 GMT
    Age: 576
    X-Served-By: cache-iad-kiad7000159-IAD, cache-lcy-eglc8600030-LCY
    X-Cache: HIT, HIT
    X-Cache-Hits: 20, 1
    X-Timer: S1720977252.799766,VS0,VE324
  • flag-us
    DNS
    215.156.26.20.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    215.156.26.20.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    133.108.199.185.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    133.108.199.185.in-addr.arpa
    IN PTR
    Response
    133.108.199.185.in-addr.arpa
    IN PTR
    cdn-185-199-108-133githubcom
  • flag-us
    DNS
    183.59.114.20.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    183.59.114.20.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    18.31.95.13.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    18.31.95.13.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    147.142.123.92.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    147.142.123.92.in-addr.arpa
    IN PTR
    Response
    147.142.123.92.in-addr.arpa
    IN PTR
    a92-123-142-147deploystaticakamaitechnologiescom
  • flag-us
    DNS
    147.142.123.92.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    147.142.123.92.in-addr.arpa
    IN PTR
  • flag-us
    DNS
    29.243.111.52.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    29.243.111.52.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    29.243.111.52.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    29.243.111.52.in-addr.arpa
    IN PTR
  • flag-us
    DNS
    73.144.22.2.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    73.144.22.2.in-addr.arpa
    IN PTR
    Response
    73.144.22.2.in-addr.arpa
    IN PTR
    a2-22-144-73deploystaticakamaitechnologiescom
  • flag-us
    DNS
    yespowerSUGAR.mine.zergpool.com
    cpuminer.exe
    Remote address:
    8.8.8.8:53
    Request
    yespowerSUGAR.mine.zergpool.com
    IN A
    Response
    yespowerSUGAR.mine.zergpool.com
    IN A
    103.249.70.7
  • flag-us
    DNS
    yespowerSUGAR.mine.zergpool.com
    cpuminer.exe
    Remote address:
    8.8.8.8:53
    Request
    yespowerSUGAR.mine.zergpool.com
    IN A
  • flag-us
    DNS
    yespowerSUGAR.mine.zergpool.com
    cpuminer.exe
    Remote address:
    8.8.8.8:53
    Request
    yespowerSUGAR.mine.zergpool.com
    IN A
  • flag-us
    DNS
    7.70.249.103.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    7.70.249.103.in-addr.arpa
    IN PTR
    Response
    7.70.249.103.in-addr.arpa
    IN PTR
    node-103-249-70-7reversex4bme
  • flag-us
    DNS
    89.65.42.20.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    89.65.42.20.in-addr.arpa
    IN PTR
    Response
  • 20.26.156.215:443
    https://github.com/cpu-pool/cpuminer-opt-yespowersugar-sugarchain/releases/download/1.4/cpuminer-opt-yespowersugar-sugarchain-win64.zip
    tls, http
    powershell.exe
    1.4kB
     8.1kB
     12
    12

    HTTP Request

    GET https://github.com/cpu-pool/cpuminer-opt-yespowersugar-sugarchain/releases/download/1.4/cpuminer-opt-yespowersugar-sugarchain-win64.zip

    HTTP Response

    302
  • 185.199.108.133:443
    https://objects.githubusercontent.com/github-production-release-asset-2e65be/244588262/c0630f00-5d47-11ea-9546-3607b8a380fc?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20240714%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240714T171400Z&X-Amz-Expires=300&X-Amz-Signature=711937a288336437321fad550c5e687f5a226c2ee58dc8e608603743c202c2ea&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=244588262&response-content-disposition=attachment%3B%20filename%3Dcpuminer-opt-yespowersugar-sugarchain-win64.zip&response-content-type=application%2Foctet-stream
    tls, http
    powershell.exe
    300.5kB
     14.2MB
     6203
    10149

    HTTP Request

    GET https://objects.githubusercontent.com/github-production-release-asset-2e65be/244588262/c0630f00-5d47-11ea-9546-3607b8a380fc?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20240714%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240714T171400Z&X-Amz-Expires=300&X-Amz-Signature=711937a288336437321fad550c5e687f5a226c2ee58dc8e608603743c202c2ea&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=244588262&response-content-disposition=attachment%3B%20filename%3Dcpuminer-opt-yespowersugar-sugarchain-win64.zip&response-content-type=application%2Foctet-stream

    HTTP Response

    200
  • 103.249.70.7:6535
    yespowerSUGAR.mine.zergpool.com
    cpuminer.exe
    38.8kB
     96.4kB
     437
    322
  • 8.8.8.8:53
    github.com
    dns
    powershell.exe
    224 B
     72 B
     4
    1

    DNS Request

    github.com

    DNS Request

    github.com

    DNS Request

    github.com

    DNS Request

    github.com

    DNS Response

    20.26.156.215

  • 8.8.8.8:53
    76.32.126.40.in-addr.arpa
    dns
    71 B
     157 B
     1
    1

    DNS Request

    76.32.126.40.in-addr.arpa

  • 8.8.8.8:53
    0.204.248.87.in-addr.arpa
    dns
    71 B
     116 B
     1
    1

    DNS Request

    0.204.248.87.in-addr.arpa

  • 8.8.8.8:53
    88.156.103.20.in-addr.arpa
    dns
    72 B
     158 B
     1
    1

    DNS Request

    88.156.103.20.in-addr.arpa

  • 8.8.8.8:53
    objects.githubusercontent.com
    dns
    powershell.exe
    75 B
     139 B
     1
    1

    DNS Request

    objects.githubusercontent.com

    DNS Response

    185.199.108.133
    185.199.109.133
    185.199.110.133
    185.199.111.133

  • 8.8.8.8:53
    133.108.199.185.in-addr.arpa
    dns
    74 B
     118 B
     1
    1

    DNS Request

    133.108.199.185.in-addr.arpa

  • 8.8.8.8:53
    215.156.26.20.in-addr.arpa
    dns
    72 B
     158 B
     1
    1

    DNS Request

    215.156.26.20.in-addr.arpa

  • 8.8.8.8:53
    183.59.114.20.in-addr.arpa
    dns
    72 B
     158 B
     1
    1

    DNS Request

    183.59.114.20.in-addr.arpa

  • 8.8.8.8:53
    18.31.95.13.in-addr.arpa
    dns
    70 B
     144 B
     1
    1

    DNS Request

    18.31.95.13.in-addr.arpa

  • 8.8.8.8:53
    147.142.123.92.in-addr.arpa
    dns
    146 B
     139 B
     2
    1

    DNS Request

    147.142.123.92.in-addr.arpa

    DNS Request

    147.142.123.92.in-addr.arpa

  • 8.8.8.8:53
    29.243.111.52.in-addr.arpa
    dns
    144 B
     158 B
     2
    1

    DNS Request

    29.243.111.52.in-addr.arpa

    DNS Request

    29.243.111.52.in-addr.arpa

  • 8.8.8.8:53
    73.144.22.2.in-addr.arpa
    dns
    70 B
     133 B
     1
    1

    DNS Request

    73.144.22.2.in-addr.arpa

  • 8.8.8.8:53
    yespowerSUGAR.mine.zergpool.com
    dns
    cpuminer.exe
    231 B
     93 B
     3
    1

    DNS Request

    yespowerSUGAR.mine.zergpool.com

    DNS Request

    yespowerSUGAR.mine.zergpool.com

    DNS Request

    yespowerSUGAR.mine.zergpool.com

    DNS Response

    103.249.70.7

  • 8.8.8.8:53
    7.70.249.103.in-addr.arpa
    dns
    71 B
     117 B
     1
    1

    DNS Request

    7.70.249.103.in-addr.arpa

  • 8.8.8.8:53
    89.65.42.20.in-addr.arpa
    dns
    70 B
     156 B
     1
    1

    DNS Request

    89.65.42.20.in-addr.arpa

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_02sunjoa.xb0.ps1
    Filesize

    60B

    MD5

    d17fe0a3f47be24a6453e9ef58c94641

    SHA1

    6ab83620379fc69f80c0242105ddffd7d98d5d9d

    SHA256

    96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7

    SHA512

    5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\LIBEAY32.dll
    Filesize

    2.2MB

    MD5

    93050bd3206a0e6160e6fb65981c77bb

    SHA1

    bd6c67028ebe18f5699fc361a2ef50fa67ce1e38

    SHA256

    b2a519a0e3774ed74f364a05ed426ba0504334cf51089cea915ed6aaae8d8d7f

    SHA512

    b78998e7b6c58bc6a53524701a12a474a0a1a46ca99384645795585941245c1e433be44fb06b202435b53c334e0d3a8edaac5ab14778facba977d2abb0045db8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\cpuminer.exe
    Filesize

    2.5MB

    MD5

    e7853a869c7cc2d8755f22842aa563a4

    SHA1

    16172e911be9c2a6455cce0ede00c892454caa47

    SHA256

    6d82dd1a8c5e217695f544d98d13f022f0a92a0178e659e80721eeea09ab8e5e

    SHA512

    5504ccde15990826bdce91935b256b4080bbb5d5346c40b85fb3689d9eae9d0359255c901ccf693531bbcfeff242f9760905cf20201060340f5dffb740c358fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libcurl-4.dll
    Filesize

    592KB

    MD5

    9c3fc89ea09f9e70a0e7003c829f434e

    SHA1

    57d1de8e5817ee055e6e1b0c65dbebd84211f412

    SHA256

    110418ad0f0e3dd732a1b17212570e66bb7e43772e996ac198191b1ba8047612

    SHA512

    24d4b51799e0f7fcd05f7466ffc2bc1a9fb6dbf014deb6b8e390559a37ce77f095822710d6060db74fc35213b347cebc9e0f8e27352b1c45f87e3db38ff2f7f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libgcc_s_seh-1.dll
    Filesize

    555KB

    MD5

    13bb780ab8f3a5fc096ea0f429452ca2

    SHA1

    04ab5162aa6d5937b8cf8e2d6b669904a5103dc2

    SHA256

    3c8e18829b540547a67c5182bfe18504c5845b59d007f414d8489e9d7098715c

    SHA512

    de845a6caed29691ce999bb4c5a3266da1841f89ab1159a9e02454a3c331520245c054aaa223774bf9b120e51e6eb98e5b7b41c67b4de7de44902e6fd938233d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libgmp-10.dll
    Filesize

    433KB

    MD5

    fbfc9ec247464994e12c29a6b8db8f88

    SHA1

    06fd22f32b38f3575518411b0ef5dc3387e1aaaf

    SHA256

    5efc15a25f932af31cadf3c4bd4c8cef1ff2d1df80db7ac91aeb06f1f54dfa28

    SHA512

    01c62feba02715961c2096ac5cdc1acc2dc12dc0fd5c6c6b4c1657b7369c237667e0913da164747e26b0d28d4664fb0a1137b2323d799e2766d5f358f6271aca

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libjansson-4.dll
    Filesize

    69KB

    MD5

    de12ee463c12b0af3f07eed326be51fa

    SHA1

    dc91c04fc82e5e60b7a152b8796374811da20ad9

    SHA256

    23bd24e06f642fe0cd5408a5981ed65b47217b7afd4af0c6e1ee2508f3a25925

    SHA512

    927379acc410b028895947cef733ffab86d3f587bc352334a740889d5888bfbadb57607fa4af4ce9328fa68b33abb514de46284f6de3b812d83ec114d648514c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libstdc++-6.dll
    Filesize

    13.9MB

    MD5

    974f6a89156b99f33a7103e5222137a5

    SHA1

    967ad982011a35a98f2754c39001ec3af7749204

    SHA256

    caaaa50b424fa02079534d9fcf04054ab1bc2b01c55a3dfa001d45a0539c9060

    SHA512

    9e023d5ae453cffb7f825d6fc34da13fe740bacb910b2f2160b304060c67dd7c454aef4b4266bd0a7ce48f253e799273af0743f0d191fbf4c6d2186013f8f8b3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\libwinpthread-1.dll
    Filesize

    290KB

    MD5

    1aca06d325b44ca427ea37b28a0497b5

    SHA1

    990fd43449cb09db7a3f27da6143ac29aab1dfa2

    SHA256

    f59b804babd80131c6f1b83b38bedefe0e3a9dafdd460269a0d7cc5f2317a48f

    SHA512

    3fbf447884969652ab84e6d75d024d17bcdfe45126737ca5bb137d0156e3778b3abbe2d78b34c3b41d7ad826b4c413a08914f191afeaf5a9b4df8a58c33fa1f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\cpuminer\Cpuminer-opt-cpu-pool-win64\zlib1.dll
    Filesize

    110KB

    MD5

    2e08aee6cfaa50e99651b7d2fa293131

    SHA1

    28475b719d94d59bd2d49f6e255713160d497122

    SHA256

    0dd643fa607a5a396ac842ee27ad4bf7764a91acac5d78b6020c4146bb2fd3f9

    SHA512

    5797e4c72936d8b96171e0834d316586397b9df26eeee74e4e97a4608a34a4598656b7a02c273184aa2c6791859b4290855eb6890ebd8cbceeedda192a9ff08c

    Download Submit

  • memory/3772-18-0x000001C0D56C0000-0x000001C0D56CA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3772-17-0x000001C0D56E0000-0x000001C0D56F2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3772-0-0x00007FFF97A03000-0x00007FFF97A05000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3772-16-0x00007FFF97A00000-0x00007FFF984C1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3772-14-0x00007FFF97A00000-0x00007FFF984C1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3772-13-0x00007FFF97A03000-0x00007FFF97A05000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3772-12-0x00007FFF97A00000-0x00007FFF984C1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3772-11-0x00007FFF97A00000-0x00007FFF984C1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3772-10-0x000001C0D51F0000-0x000001C0D5212000-memory.dmp

    Filesize

    136KB

    Download

  • memory/3772-106-0x00007FFF97A00000-0x00007FFF984C1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3920-94-0x0000000064940000-0x000000006498A000-memory.dmp

    Filesize

    296KB

    Download

  • memory/3920-96-0x000000006FC40000-0x0000000070800000-memory.dmp

    Filesize

    11.8MB

    Download

  • memory/3920-93-0x0000000061440000-0x00000000614C0000-memory.dmp

    Filesize

    512KB

    Download

  • memory/3920-92-0x000000006ACC0000-0x000000006AD33000-memory.dmp

    Filesize

    460KB

    Download

  • memory/3920-91-0x0000000063080000-0x00000000632C8000-memory.dmp

    Filesize

    2.3MB

    Download

  • memory/3920-90-0x000000006FC00000-0x000000006FC19000-memory.dmp

    Filesize

    100KB

    Download

  • memory/3920-88-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/3920-95-0x0000000062E80000-0x0000000062EA5000-memory.dmp

    Filesize

    148KB

    Download

  • memory/3920-97-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/3920-89-0x0000000070800000-0x0000000070880000-memory.dmp

    Filesize

    512KB

    Download

  • memory/3920-107-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/3920-125-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/3920-134-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/3920-143-0x0000000000400000-0x0000000000696000-memory.dmp

    Filesize

    2.6MB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.