General

  • Target

    b7b5ca2bd8e5e8b0609b1d84faa8916f90f6661d62dbfb25cca186ec1614c108

  • Size

    2.2MB

  • Sample

    240705-cfp9sszdpj

  • MD5

    5353663a7ba37edd3327c9d018208ec6

  • SHA1

    8e9ca1b60836b06ffc89c7f73549c1e45738fcb6

  • SHA256

    b7b5ca2bd8e5e8b0609b1d84faa8916f90f6661d62dbfb25cca186ec1614c108

  • SHA512

    20478d02ee6e7db6d80e85716d57eae1821bdbff75d835231157ac16108b2cc6c3b9d207f9ebabb6df9a92e7a386c354c77c43447a6c2d0e47acf12c9b312bf7

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StYCT:oemTLkNdfE0pZrwS

Malware Config

Targets

    • Target

      b7b5ca2bd8e5e8b0609b1d84faa8916f90f6661d62dbfb25cca186ec1614c108

    • Size

      2.2MB

    • MD5

      5353663a7ba37edd3327c9d018208ec6

    • SHA1

      8e9ca1b60836b06ffc89c7f73549c1e45738fcb6

    • SHA256

      b7b5ca2bd8e5e8b0609b1d84faa8916f90f6661d62dbfb25cca186ec1614c108

    • SHA512

      20478d02ee6e7db6d80e85716d57eae1821bdbff75d835231157ac16108b2cc6c3b9d207f9ebabb6df9a92e7a386c354c77c43447a6c2d0e47acf12c9b312bf7

    • SSDEEP

      49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StYCT:oemTLkNdfE0pZrwS

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks