General

  • Target

    1bd35df1cb854f7de0c9ae348fbdc110N.exe

  • Size

    2.0MB

  • Sample

    240706-15jqbavamk

  • MD5

    1bd35df1cb854f7de0c9ae348fbdc110

  • SHA1

    7abc16fb7987585d206583f975e75eb7b7fa62d2

  • SHA256

    c0811ae1b96b43cfce322d545f88e15c025e5f3988d2b06e62c5d7e8724004c6

  • SHA512

    3911a854a5c0db5d825447e7e3bc581d72786fb09ae52989495f566b719d4376cdcddc87e2643fc5e586b959d7f9ced4f69e2d1d3a52a7ecef91c0f08ba96aeb

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2a:GemTLkNdfE0pZaQC

Malware Config

Targets

    • Target

      1bd35df1cb854f7de0c9ae348fbdc110N.exe

    • Size

      2.0MB

    • MD5

      1bd35df1cb854f7de0c9ae348fbdc110

    • SHA1

      7abc16fb7987585d206583f975e75eb7b7fa62d2

    • SHA256

      c0811ae1b96b43cfce322d545f88e15c025e5f3988d2b06e62c5d7e8724004c6

    • SHA512

      3911a854a5c0db5d825447e7e3bc581d72786fb09ae52989495f566b719d4376cdcddc87e2643fc5e586b959d7f9ced4f69e2d1d3a52a7ecef91c0f08ba96aeb

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2a:GemTLkNdfE0pZaQC

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks