General

  • Target

    ec2f0b68d966490cc290e522d2b1a59ebe4854b1ade451b5bbe5e2057a440800

  • Size

    2.2MB

  • Sample

    240703-e2x8ms1epr

  • MD5

    a2e6cdcaabca2131e568a30b667e1af0

  • SHA1

    1b119cb58c30e1a61fdd90f516a9422e7d7fc791

  • SHA256

    ec2f0b68d966490cc290e522d2b1a59ebe4854b1ade451b5bbe5e2057a440800

  • SHA512

    8cd0a8b03a4b2eb7c304626a9c097031cf016b07823d7bea335c4fb14a8c7fb47413c111ede88d96207e242f1875de5972f067af354835e801c9ae342332838e

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SqCPGvTm:BemTLkNdfE0pZrwW

Malware Config

Targets

    • Target

      ec2f0b68d966490cc290e522d2b1a59ebe4854b1ade451b5bbe5e2057a440800

    • Size

      2.2MB

    • MD5

      a2e6cdcaabca2131e568a30b667e1af0

    • SHA1

      1b119cb58c30e1a61fdd90f516a9422e7d7fc791

    • SHA256

      ec2f0b68d966490cc290e522d2b1a59ebe4854b1ade451b5bbe5e2057a440800

    • SHA512

      8cd0a8b03a4b2eb7c304626a9c097031cf016b07823d7bea335c4fb14a8c7fb47413c111ede88d96207e242f1875de5972f067af354835e801c9ae342332838e

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SqCPGvTm:BemTLkNdfE0pZrwW

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks