kpot | 7a48f4b7e1c4060fc68c37cecc0fb8eaab84c19aa1fe537c8aa9d8e399644c94 | Triage

Submit
Reports

Overview

overview

Static

static

1d1fec624c...cs.exe

windows7-x64

1d1fec624c...cs.exe

windows10-2004-x64

Sharing

General

Target

1d1fec624cbdc8604b5fc5e61287be60_NeikiAnalytics.exe
Size

2.2MB
Sample

240527-d7pb9aeh2w
MD5

1d1fec624cbdc8604b5fc5e61287be60
SHA1

70538d11dbc1a3b9ab4898a7edd3d0d46e752419
SHA256

7a48f4b7e1c4060fc68c37cecc0fb8eaab84c19aa1fe537c8aa9d8e399644c94
SHA512

7d6cf148c5870eb0dcf1eca0566bc1db176f0dc80bba60142bf51864f86aa7078bafd1b9b1c905fd582ed9bf1619daddb5ae1e5dfcc03b640245e7c604ef693e
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxY/O1F:BemTLkNdfE0pZrwo

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

1d1fec624cbdc8604b5fc5e61287be60_NeikiAnalytics.exe

Resource

win7-20240221-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

1d1fec624cbdc8604b5fc5e61287be60_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  1d1fec624cbdc8604b5fc5e61287be60_NeikiAnalytics.exe
- Size
  
  2.2MB
- MD5
  
  1d1fec624cbdc8604b5fc5e61287be60
- SHA1
  
  70538d11dbc1a3b9ab4898a7edd3d0d46e752419
- SHA256
  
  7a48f4b7e1c4060fc68c37cecc0fb8eaab84c19aa1fe537c8aa9d8e399644c94
- SHA512
  
  7d6cf148c5870eb0dcf1eca0566bc1db176f0dc80bba60142bf51864f86aa7078bafd1b9b1c905fd582ed9bf1619daddb5ae1e5dfcc03b640245e7c604ef693e
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxY/O1F:BemTLkNdfE0pZrwo
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy