kpot | 583cb7ad9a4d50cb18d2e8ce0cf9ffe16bab5e9a5e4ebb44ab035a14ac1d4acc | Triage

Submit
Reports

Overview

overview

Static

static

5c179a1a8f...cs.exe

windows7-x64

5c179a1a8f...cs.exe

windows10-2004-x64

Sharing

General

Target

5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe
Size

2.4MB
Sample

240530-akz9fsgd22
MD5

5c179a1a8faf08f5ca0ce812c57fd370
SHA1

3227af929387632ddb9dbf29920aa5651a47cbc0
SHA256

583cb7ad9a4d50cb18d2e8ce0cf9ffe16bab5e9a5e4ebb44ab035a14ac1d4acc
SHA512

f7c45a58e787ac3c2f3bdfb6a9209a0ff62dcd6d4fa4823d548fb5429506e17d7ef7dd59609d01e6bb8b30510fdb4e9c2702d2d8f9a9b2c77793b906e0fc5226
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoY3:BemTLkNdfE0pZrwE

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe

Resource

win7-20240221-en

kpot xmrig miner stealer trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe
- Size
  
  2.4MB
- MD5
  
  5c179a1a8faf08f5ca0ce812c57fd370
- SHA1
  
  3227af929387632ddb9dbf29920aa5651a47cbc0
- SHA256
  
  583cb7ad9a4d50cb18d2e8ce0cf9ffe16bab5e9a5e4ebb44ab035a14ac1d4acc
- SHA512
  
  f7c45a58e787ac3c2f3bdfb6a9209a0ff62dcd6d4fa4823d548fb5429506e17d7ef7dd59609d01e6bb8b30510fdb4e9c2702d2d8f9a9b2c77793b906e0fc5226
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoY3:BemTLkNdfE0pZrwE
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy