kpot | 662bb863aea2b94fb8c59665de04f05e08c314b9647379b5b8adcd76884b3ac9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

6d7803a428...cs.exe

windows7-x64

6d7803a428...cs.exe

windows10-2004-x64

Sharing

General

Target

6d7803a428d713af8e5d2df630d67110_NeikiAnalytics.exe
Size

2.2MB
Sample

240526-mmwp9sfc31
MD5

6d7803a428d713af8e5d2df630d67110
SHA1

8f765349938cf9d5bcc9b5a4ad8d39f9873aa063
SHA256

662bb863aea2b94fb8c59665de04f05e08c314b9647379b5b8adcd76884b3ac9
SHA512

a41000f77ebd43f7986beba746f4dde3a233ca45ae3eaa204346d4860931c46ebaafd9e560a5561508bb75b8575e617509feaecc57db2a9ef1f49da29ffb4b00
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxYj+ITWSMgCW:BemTLkNdfE0pZrwh

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

6d7803a428d713af8e5d2df630d67110_NeikiAnalytics.exe

Resource

win7-20240419-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6d7803a428d713af8e5d2df630d67110_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  6d7803a428d713af8e5d2df630d67110_NeikiAnalytics.exe
- Size
  
  2.2MB
- MD5
  
  6d7803a428d713af8e5d2df630d67110
- SHA1
  
  8f765349938cf9d5bcc9b5a4ad8d39f9873aa063
- SHA256
  
  662bb863aea2b94fb8c59665de04f05e08c314b9647379b5b8adcd76884b3ac9
- SHA512
  
  a41000f77ebd43f7986beba746f4dde3a233ca45ae3eaa204346d4860931c46ebaafd9e560a5561508bb75b8575e617509feaecc57db2a9ef1f49da29ffb4b00
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxYj+ITWSMgCW:BemTLkNdfE0pZrwh
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.