General

  • Target

    34448ec0ba466c257278074ef51cce24704f8d2ecf33085d5d535b10d3b3ffaa

  • Size

    2.4MB

  • Sample

    240704-y9pq1szdlf

  • MD5

    a1bb7882a769058c83dc0de7b66b7844

  • SHA1

    dc2d647622fa158a263592d9a7ae5d43939d8015

  • SHA256

    34448ec0ba466c257278074ef51cce24704f8d2ecf33085d5d535b10d3b3ffaa

  • SHA512

    b4454a6d93a3e3747c14f308a55591f6836697e8360f8d4ef02a916fc73ae22f03497a8a956ff6ea31b93404f95f0ee4ea523df5ebd768f115e381887aff40bd

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3f:BemTLkNdfE0pZrwr

Malware Config

Targets

    • Target

      34448ec0ba466c257278074ef51cce24704f8d2ecf33085d5d535b10d3b3ffaa

    • Size

      2.4MB

    • MD5

      a1bb7882a769058c83dc0de7b66b7844

    • SHA1

      dc2d647622fa158a263592d9a7ae5d43939d8015

    • SHA256

      34448ec0ba466c257278074ef51cce24704f8d2ecf33085d5d535b10d3b3ffaa

    • SHA512

      b4454a6d93a3e3747c14f308a55591f6836697e8360f8d4ef02a916fc73ae22f03497a8a956ff6ea31b93404f95f0ee4ea523df5ebd768f115e381887aff40bd

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3f:BemTLkNdfE0pZrwr

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks