xmrig | db441a36f681cd0c4bbc7ba3f42a9ece988acccf34a37afdaf062d5a5abef025

Analysis

max time kernel
94s
max time network
144s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
24-12-2024 10:20

Target

JaffaCakes118_db441a36f681cd0c4bbc7ba3f42a9ece988acccf34a37afdaf062d5a5abef025.exe
Size

2.6MB
MD5

e24787a96b3341c8e6e65ad15668d4eb
SHA1

31271a40912415a0c4014ad8aee6add8c71fb1e9
SHA256

db441a36f681cd0c4bbc7ba3f42a9ece988acccf34a37afdaf062d5a5abef025
SHA512

47217db57c5fd960627a6143f19bea37b1f9fac9d182c2b2dbe52f23ec135e7287c37dd047e0b49dc3c124be17fa04c00338b329d164ac6d9735d687762d56ce
SSDEEP

49152:EnCbL83y9FdfE0pZ0zCa4wI156uL3pgrCEdMKPFotsgEBt:EniLf9FdfE0pZB156utgpPFotBEr

Score

10^/10

xmrig miner upx

Xmrig family
xmrig
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 2 IoCs

miner

resource	yara_rule
behavioral2/memory/2992-0-0x00007FF70FB30000-0x00007FF70FE84000-memory.dmp	xmrig
behavioral2/memory/2992-1-0x00007FF70FB30000-0x00007FF70FE84000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2992-0-0x00007FF70FB30000-0x00007FF70FE84000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_db441a36f681cd0c4bbc7ba3f42a9ece988acccf34a37afdaf062d5a5abef025.exe
"C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_db441a36f681cd0c4bbc7ba3f42a9ece988acccf34a37afdaf062d5a5abef025.exe"
1⤵
PID:2992

memory/2992-0-0x00007FF70FB30000-0x00007FF70FE84000-memory.dmp

Filesize
3.3MB

Download
memory/2992-1-0x00007FF70FB30000-0x00007FF70FE84000-memory.dmp

Filesize
3.3MB

Download