xmrig | 1650e01dba4c2b427d29464da59d42166a69c2cefd4b40f1e4b30a41600c0969

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
24-12-2024 23:41

Target

JaffaCakes118_1650e01dba4c2b427d29464da59d42166a69c2cefd4b40f1e4b30a41600c0969.exe
Size

6.0MB
MD5

00bb23d6773970344f8f4704678b2cfd
SHA1

3272e3dcf0a745817ca264e5514dc9e10b0f45e3
SHA256

1650e01dba4c2b427d29464da59d42166a69c2cefd4b40f1e4b30a41600c0969
SHA512

940b6007f0f3561dcf2e9454ac42343efad61f752fb28c18b5c276c375d42dd0ba132a3c2be2cffb175cd3d843f309f1fa1497327dc03912665bff6a62dc07f4
SSDEEP

98304:EniLf9FdfE0pZB156utgpPFotBER/mQ32lU5:eOl56utgpPF8u/75

Score

10^/10

xmrig miner upx

Xmrig family
xmrig
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/4772-0-0x00007FF696F40000-0x00007FF697294000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/4772-0-0x00007FF696F40000-0x00007FF697294000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_1650e01dba4c2b427d29464da59d42166a69c2cefd4b40f1e4b30a41600c0969.exe
"C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_1650e01dba4c2b427d29464da59d42166a69c2cefd4b40f1e4b30a41600c0969.exe"
1⤵
PID:4772

memory/4772-0-0x00007FF696F40000-0x00007FF697294000-memory.dmp

Filesize
3.3MB

Download