xmrig | 996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035

Analysis

max time kernel
94s
max time network
96s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
25-01-2025 09:20

Target

996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe
Size

1.4MB
MD5

f09adfa601d81201a45b6346115e2b10
SHA1

65d7e1bf757f449fe334286a5f599291739e7317
SHA256

996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035
SHA512

c93bacc64a01fe231e463c91d5b9717922c8bfbde8a9b6efb23d244801e2131f3d6ac35030e397c17c243679529f9f6ac89e6206e7ee5d83e8be15427dfab735
SSDEEP

24576:RO6Pfq+MjZDFHH30s64DMjR402lorRLAEJXeyakjzH2tK2eU5ufv9aG14/LCdcLe:vHqNEODi4lyLAiaPK2eVn0a4FK

Score

10^/10

xmrig miner upx

Xmrig family
xmrig
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/3932-2-0x00007FF6190D0000-0x00007FF6196EF000-memory.dmp	xmrig

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/3932-0-0x00007FF6190D0000-0x00007FF6196EF000-memory.dmp	upx
behavioral2/memory/3932-2-0x00007FF6190D0000-0x00007FF6196EF000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe
"C:\Users\Admin\AppData\Local\Temp\996fd255154c92bc08b756f98af8d07179779c229155b8a5f336d0efb280c035N.exe"
1⤵
PID:3932

memory/3932-0-0x00007FF6190D0000-0x00007FF6196EF000-memory.dmp

Filesize
6.1MB

Download
memory/3932-1-0x0000027C43100000-0x0000027C43120000-memory.dmp

Filesize
128KB

Download
memory/3932-2-0x00007FF6190D0000-0x00007FF6196EF000-memory.dmp

Filesize
6.1MB

Download