Overview

overview

10

Static

static

10

b072159fd0...26.exe

windows7-x64

10

b072159fd0...26.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b072159fd01b6d05b62acd6beb9d30c2c42770ff6e93cd24e65f92fb2064a626.exe

  • Size

    2.4MB

  • Sample

    240520-fc21zach3z

  • MD5

    d546ea2bbd49ca83dbdf4419877c5790

  • SHA1

    2a17e922ea78b8f6c10fa7f422fb2b90fac1188c

  • SHA256

    b072159fd01b6d05b62acd6beb9d30c2c42770ff6e93cd24e65f92fb2064a626

  • SHA512

    35eed511a52c95bbac891ca357d84b169b1aae5548abc5d9f0c5899b563fd339a9f58015f79f2af5165cbed8682520cf388174c9fd134ea6b6ee9447df10f4d4

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoh:BemTLkNdfE0pZrwX

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      b072159fd01b6d05b62acd6beb9d30c2c42770ff6e93cd24e65f92fb2064a626.exe

    • Size

      2.4MB

    • MD5

      d546ea2bbd49ca83dbdf4419877c5790

    • SHA1

      2a17e922ea78b8f6c10fa7f422fb2b90fac1188c

    • SHA256

      b072159fd01b6d05b62acd6beb9d30c2c42770ff6e93cd24e65f92fb2064a626

    • SHA512

      35eed511a52c95bbac891ca357d84b169b1aae5548abc5d9f0c5899b563fd339a9f58015f79f2af5165cbed8682520cf388174c9fd134ea6b6ee9447df10f4d4

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoh:BemTLkNdfE0pZrwX

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks