General

  • Target

    95a8819fb8cc9da1472bf5734c3b494980f7291eb544d43001fe4e51fb0e2a91

  • Size

    2.4MB

  • Sample

    240703-aw6klsxhnd

  • MD5

    875ed04eda15222b8a3915990908d0f4

  • SHA1

    69f7ec92afc8064298e1b5527773cafb186f8a08

  • SHA256

    95a8819fb8cc9da1472bf5734c3b494980f7291eb544d43001fe4e51fb0e2a91

  • SHA512

    08f4710777e13e777692740e70bd0978206d0108df160907a60c2f1c37b26606dcc31b3b628e94821694f096a4db10982df2fd66e78c67620349cf2190be1de6

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqIucI1WA2X:BemTLkNdfE0pZrwl

Malware Config

Targets

    • Target

      95a8819fb8cc9da1472bf5734c3b494980f7291eb544d43001fe4e51fb0e2a91

    • Size

      2.4MB

    • MD5

      875ed04eda15222b8a3915990908d0f4

    • SHA1

      69f7ec92afc8064298e1b5527773cafb186f8a08

    • SHA256

      95a8819fb8cc9da1472bf5734c3b494980f7291eb544d43001fe4e51fb0e2a91

    • SHA512

      08f4710777e13e777692740e70bd0978206d0108df160907a60c2f1c37b26606dcc31b3b628e94821694f096a4db10982df2fd66e78c67620349cf2190be1de6

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqIucI1WA2X:BemTLkNdfE0pZrwl

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks