xmrig | 6567cbee45103b02d6e572d3d94e724c83dff28605c6733f4960b1494f76266c

Analysis

max time kernel
94s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
12-09-2024 14:38

Target

dc6f2698b6580c3554d9bd8fc16ef5e2_JaffaCakes118.exe
Size

5.9MB
MD5

dc6f2698b6580c3554d9bd8fc16ef5e2
SHA1

85cff79c05d7f2ff88947c39a2763a5e59395e5a
SHA256

6567cbee45103b02d6e572d3d94e724c83dff28605c6733f4960b1494f76266c
SHA512

14bb8cc09494c3c374950b6188c1b9cef22d57f641577b6e110c73d99ff964729eea3c4ab48a5415becc451d8dd772d23e44a40385e9832943e954c5d88c0683
SSDEEP

98304:demTLkNdfE0pZ3u56utgpPFotBER/mQ32lUi:E+b56utgpPF8u/7i

Score

10^/10

xmrig miner upx

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 2 IoCs

miner

resource	yara_rule
behavioral2/memory/544-0-0x00007FF69A020000-0x00007FF69A374000-memory.dmp	xmrig
behavioral2/memory/544-1-0x00007FF69A020000-0x00007FF69A374000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/544-0-0x00007FF69A020000-0x00007FF69A374000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\dc6f2698b6580c3554d9bd8fc16ef5e2_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\dc6f2698b6580c3554d9bd8fc16ef5e2_JaffaCakes118.exe"
1⤵
PID:544

memory/544-0-0x00007FF69A020000-0x00007FF69A374000-memory.dmp

Filesize
3.3MB

Download
memory/544-1-0x00007FF69A020000-0x00007FF69A374000-memory.dmp

Filesize
3.3MB

Download