Open bymaximus opened 6 years ago
Nice job of reverse-engeneering ;) This is how I call then embedded process of JCE 64 bits, the one you see as "attrib" in the task manager. All this is explained in the doc, at the end, this is a way to hide from Windows Defender, not to be erased. Really, JCE has zero malicious code. The name "kernel" comes from the OpenCL world when i started JCE as both a GPU and CPU miner, then dropping GPU but keeping the name. Nothing related to kernel Attack or kernel code.
Can you explain what is kernel64.exe?