kpot | f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

f52b3ef2d2...3f.exe

windows7-x64

f52b3ef2d2...3f.exe

windows10-2004-x64

Sharing

General

Target

f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f
Size

2.3MB
Sample

240623-f48mts1dnh
MD5

7e9ef30eefa01bdf58426e97af93f733
SHA1

2bee8ac4f1cf283dbf2444e3befb5579359554a4
SHA256

f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f
SHA512

67a8fe14811ef343f72713f68a76a86937625533855c54617ecf3c20871b81055053b7efbdfa6051d62e8d8161568b483aa2d3e5d9735b0827c9b1ba44f50e51
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKWnq0vljw:BemTLkNdfE0pZrwk

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

7 signatures

Behavioral task

behavioral1

Sample

f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f.exe

Resource

win7-20240508-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f.exe

Resource

win10v2004-20240611-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f
- Size
  
  2.3MB
- MD5
  
  7e9ef30eefa01bdf58426e97af93f733
- SHA1
  
  2bee8ac4f1cf283dbf2444e3befb5579359554a4
- SHA256
  
  f52b3ef2d2a0ae7c9867836d3022efcf82441d9fab50258565fd0e887c84893f
- SHA512
  
  67a8fe14811ef343f72713f68a76a86937625533855c54617ecf3c20871b81055053b7efbdfa6051d62e8d8161568b483aa2d3e5d9735b0827c9b1ba44f50e51
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKWnq0vljw:BemTLkNdfE0pZrwk
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- UPX dump on OEP (original entry point)
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.