General

  • Target

    238eae29b7b7a72f9f4561fb0905996129970f0b2c1199e1d4e2a98917cbe6fa.exe

  • Size

    2.3MB

  • Sample

    240705-bbbeea1ble

  • MD5

    e30d87acd448ebe8e7bb4d31d0b11a80

  • SHA1

    90889137aee934bfcc2009e8c48375d20ce9489b

  • SHA256

    238eae29b7b7a72f9f4561fb0905996129970f0b2c1199e1d4e2a98917cbe6fa

  • SHA512

    e1f8b489bbc373440b954d7b83e77639fb9e0e13081c9214add7937da6578914a9923d3245dbd64648dc4a4483efc36f853d00b9593e032e31c1a550ca582c80

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+r:BemTLkNdfE0pZrwr

Malware Config

Targets

    • Target

      238eae29b7b7a72f9f4561fb0905996129970f0b2c1199e1d4e2a98917cbe6fa.exe

    • Size

      2.3MB

    • MD5

      e30d87acd448ebe8e7bb4d31d0b11a80

    • SHA1

      90889137aee934bfcc2009e8c48375d20ce9489b

    • SHA256

      238eae29b7b7a72f9f4561fb0905996129970f0b2c1199e1d4e2a98917cbe6fa

    • SHA512

      e1f8b489bbc373440b954d7b83e77639fb9e0e13081c9214add7937da6578914a9923d3245dbd64648dc4a4483efc36f853d00b9593e032e31c1a550ca582c80

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+r:BemTLkNdfE0pZrwr

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks