General

  • Target

    8971c8b4722a93837b58e322a0aed2a13453c41584feb64df03c832c4a824e7c

  • Size

    2.1MB

  • Sample

    240702-3z7las1bpm

  • MD5

    d53a5f2d6bd960b17b7183d527fdbdd9

  • SHA1

    6d9a29e27371f6a0fab60720de050deb8105a8f1

  • SHA256

    8971c8b4722a93837b58e322a0aed2a13453c41584feb64df03c832c4a824e7c

  • SHA512

    be81c6e5dd2c725ec29e0da3af54c6f16f5fc10a4075a2f533be739dfa17f34691acbfa69f7aafe8e806696bd7bdd91092b778b594d13281a321685da4d8eef4

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6g81pbNj:BemTLkNdfE0pZrwb

Malware Config

Targets

    • Target

      8971c8b4722a93837b58e322a0aed2a13453c41584feb64df03c832c4a824e7c

    • Size

      2.1MB

    • MD5

      d53a5f2d6bd960b17b7183d527fdbdd9

    • SHA1

      6d9a29e27371f6a0fab60720de050deb8105a8f1

    • SHA256

      8971c8b4722a93837b58e322a0aed2a13453c41584feb64df03c832c4a824e7c

    • SHA512

      be81c6e5dd2c725ec29e0da3af54c6f16f5fc10a4075a2f533be739dfa17f34691acbfa69f7aafe8e806696bd7bdd91092b778b594d13281a321685da4d8eef4

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6g81pbNj:BemTLkNdfE0pZrwb

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks