jceminer / cn_cpu_miner

Cryptonote CPU Miner
34 stars 23 forks source link

kernel #6

Open bymaximus opened 6 years ago

bymaximus commented 6 years ago

Can you explain what is kernel64.exe?

ida - c__users_neide_downloads_jce_cn_cpu_miner windows 029a_jce_cn_cpu_miner64 i64 jce_cn_cpu_miner64 exe 2018-05-27 02 54 16

jceminer commented 6 years ago

Nice job of reverse-engeneering ;) This is how I call then embedded process of JCE 64 bits, the one you see as "attrib" in the task manager. All this is explained in the doc, at the end, this is a way to hide from Windows Defender, not to be erased. Really, JCE has zero malicious code. The name "kernel" comes from the OpenCL world when i started JCE as both a GPU and CPU miner, then dropping GPU but keeping the name. Nothing related to kernel Attack or kernel code.