General

  • Target

    235636aeb484c8dfd9e039d8ef790bc0.exe

  • Size

    2.4MB

  • Sample

    240706-a6q8ns1apq

  • MD5

    235636aeb484c8dfd9e039d8ef790bc0

  • SHA1

    95a6622dea546aaaa7fa722961db10717699036b

  • SHA256

    8c42c06df1d27f6aaa2b4b0cb2ce25656b14402237bc846c10216e80692f9c98

  • SHA512

    bfbaa04b233271767ef1f5e76a2226bb509025506ccfb2a010c70e2c36af1439102daf15d18d253f27f170dbe0e6f608e2801ec8526cbb7ae3594c602c62a233

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3C:BemTLkNdfE0pZrwe

Malware Config

Targets

    • Target

      235636aeb484c8dfd9e039d8ef790bc0.exe

    • Size

      2.4MB

    • MD5

      235636aeb484c8dfd9e039d8ef790bc0

    • SHA1

      95a6622dea546aaaa7fa722961db10717699036b

    • SHA256

      8c42c06df1d27f6aaa2b4b0cb2ce25656b14402237bc846c10216e80692f9c98

    • SHA512

      bfbaa04b233271767ef1f5e76a2226bb509025506ccfb2a010c70e2c36af1439102daf15d18d253f27f170dbe0e6f608e2801ec8526cbb7ae3594c602c62a233

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3C:BemTLkNdfE0pZrwe

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks