kpot | 6db061980d3ff5c555133fc47da0ea2904335c7c78ac670d9471bc2461b22e1c | Triage

Submit
Reports

Overview

overview

Static

static

07799eb84a...cs.exe

windows7-x64

07799eb84a...cs.exe

windows10-2004-x64

Sharing

General

Target

07799eb84a88c579edeb926533403170_NeikiAnalytics.exe
Size

2.0MB
Sample

240528-z3jf4adg47
MD5

07799eb84a88c579edeb926533403170
SHA1

b27b8f0aa304a8be2d23fe6fa0b6fdaf5e13f434
SHA256

6db061980d3ff5c555133fc47da0ea2904335c7c78ac670d9471bc2461b22e1c
SHA512

4622f8e8c51156e61aae73a7654412b271a0345e8cb28f5a8f742b67fb2a99002bb73f3117f0650c2f3a810bcc2c009dfb7a18e9bbd877910639968cf88cf6ba
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KI3C:BemTLkNdfE0pZrwK

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

07799eb84a88c579edeb926533403170_NeikiAnalytics.exe

Resource

win7-20240508-en

kpot xmrig miner stealer trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

07799eb84a88c579edeb926533403170_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  07799eb84a88c579edeb926533403170_NeikiAnalytics.exe
- Size
  
  2.0MB
- MD5
  
  07799eb84a88c579edeb926533403170
- SHA1
  
  b27b8f0aa304a8be2d23fe6fa0b6fdaf5e13f434
- SHA256
  
  6db061980d3ff5c555133fc47da0ea2904335c7c78ac670d9471bc2461b22e1c
- SHA512
  
  4622f8e8c51156e61aae73a7654412b271a0345e8cb28f5a8f742b67fb2a99002bb73f3117f0650c2f3a810bcc2c009dfb7a18e9bbd877910639968cf88cf6ba
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KI3C:BemTLkNdfE0pZrwK
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy