xmrig | 996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
25-01-2025 09:20

Target

996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe
Size

1.4MB
MD5

f09adfa601d81201a45b6346115e2b10
SHA1

65d7e1bf757f449fe334286a5f599291739e7317
SHA256

996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035
SHA512

c93bacc64a01fe231e463c91d5b9717922c8bfbde8a9b6efb23d244801e2131f3d6ac35030e397c17c243679529f9f6ac89e6206e7ee5d83e8be15427dfab735
SSDEEP

24576:RO6Pfq+MjZDFHH30s64DMjR402lorRLAEJXeyakjzH2tK2eU5ufv9aG14/LCdcLe:vHqNEODi4lyLAiaPK2eVn0a4FK

Score

10^/10

xmrig miner upx

Xmrig family
xmrig
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral1/memory/2648-2-0x000000013F440000-0x000000013FA5F000-memory.dmp	xmrig

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2648-0-0x000000013F440000-0x000000013FA5F000-memory.dmp	upx
behavioral1/memory/2648-2-0x000000013F440000-0x000000013FA5F000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe
"C:\Users\Admin\AppData\Local\Temp\996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe"
1⤵
PID:2648

memory/2648-1-0x0000000000200000-0x0000000000220000-memory.dmp

Filesize
128KB

Download
memory/2648-0-0x000000013F440000-0x000000013FA5F000-memory.dmp

Filesize
6.1MB

Download
memory/2648-2-0x000000013F440000-0x000000013FA5F000-memory.dmp

Filesize
6.1MB

Download