kpot | 3e6412d9ebe390dbfac456b56e269f78294a1c4f96e0146f1352c228aef0571b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

b86b0701f6...cs.exe

windows7-x64

b86b0701f6...cs.exe

windows10-2004-x64

Sharing

General

Target

b86b0701f64688e36ced280423531270_NeikiAnalytics.exe
Size

2.0MB
Sample

240527-m4vjjahb3y
MD5

b86b0701f64688e36ced280423531270
SHA1

e5fac9f97d61b10d0ece6971d63658f3989728bc
SHA256

3e6412d9ebe390dbfac456b56e269f78294a1c4f96e0146f1352c228aef0571b
SHA512

5f7e003ea9af2eb895beada9b1a173b795c6a08ea9f906de36a2eecf50413a313c04f4e4538c2d33372eb974ca4a69f528065afe7ccdfc0c69353be9fe0d39c5
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KI3Yr:BemTLkNdfE0pZrwE

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

b86b0701f64688e36ced280423531270_NeikiAnalytics.exe

Resource

win7-20240221-en

kpot xmrig miner stealer trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

b86b0701f64688e36ced280423531270_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b86b0701f64688e36ced280423531270_NeikiAnalytics.exe
- Size
  
  2.0MB
- MD5
  
  b86b0701f64688e36ced280423531270
- SHA1
  
  e5fac9f97d61b10d0ece6971d63658f3989728bc
- SHA256
  
  3e6412d9ebe390dbfac456b56e269f78294a1c4f96e0146f1352c228aef0571b
- SHA512
  
  5f7e003ea9af2eb895beada9b1a173b795c6a08ea9f906de36a2eecf50413a313c04f4e4538c2d33372eb974ca4a69f528065afe7ccdfc0c69353be9fe0d39c5
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KI3Yr:BemTLkNdfE0pZrwE
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.