kpot | b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

b460fddea1...5a.exe

windows7-x64

b460fddea1...5a.exe

windows10-2004-x64

Sharing

General

Target

b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a
Size

2.2MB
Sample

240530-cdzepabd77
MD5

492beb5e713afc925199cf57fea1c796
SHA1

76b2a457e7a2b9b77a68d4b3f1d960be59546af6
SHA256

b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a
SHA512

ef09e1c0a81f7f693780de3f7bd91580e13a4f2e0a59f8b27e91479ff04f5c24d7e268f12fb7f92adff4e780e3f56b857584839bb6c0943f102c914a8df0deb4
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2IAR:BemTLkNdfE0pZrwK

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

7 signatures

Behavioral task

behavioral1

Sample

b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a.exe

Resource

win7-20240221-en

kpot xmrig miner stealer trojan upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a.exe

Resource

win10v2004-20240426-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a
- Size
  
  2.2MB
- MD5
  
  492beb5e713afc925199cf57fea1c796
- SHA1
  
  76b2a457e7a2b9b77a68d4b3f1d960be59546af6
- SHA256
  
  b460fddea10a3223b7c6062fb48d5ac6a7ef72e326c899ed646fc482da75645a
- SHA512
  
  ef09e1c0a81f7f693780de3f7bd91580e13a4f2e0a59f8b27e91479ff04f5c24d7e268f12fb7f92adff4e780e3f56b857584839bb6c0943f102c914a8df0deb4
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2IAR:BemTLkNdfE0pZrwK
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- UPX dump on OEP (original entry point)
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.