General

  • Target

    21c30bcd44fe5e4b37ba6061118ea7d4c0575c1ad24de03870ae2d815288eeac

  • Size

    1.5MB

  • Sample

    240706-x9q4ea1elm

  • MD5

    a2c514963814377add02df78fa7d3eaa

  • SHA1

    bedcfbbe0285add8df8576a0d7897fe7e39e1328

  • SHA256

    21c30bcd44fe5e4b37ba6061118ea7d4c0575c1ad24de03870ae2d815288eeac

  • SHA512

    adbda71a36d118f958533b61f3a537d6fd69e8e6900191b753133b311055e097b7e6af5b76e386169a3dec4c94694cee5d74ce2109ecc5b5a870369208cdbf93

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hl+dZQZBY:ROdWCCi7/raZ5aIwC+Agr6StYCp

Malware Config

Targets

    • Target

      21c30bcd44fe5e4b37ba6061118ea7d4c0575c1ad24de03870ae2d815288eeac

    • Size

      1.5MB

    • MD5

      a2c514963814377add02df78fa7d3eaa

    • SHA1

      bedcfbbe0285add8df8576a0d7897fe7e39e1328

    • SHA256

      21c30bcd44fe5e4b37ba6061118ea7d4c0575c1ad24de03870ae2d815288eeac

    • SHA512

      adbda71a36d118f958533b61f3a537d6fd69e8e6900191b753133b311055e097b7e6af5b76e386169a3dec4c94694cee5d74ce2109ecc5b5a870369208cdbf93

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hl+dZQZBY:ROdWCCi7/raZ5aIwC+Agr6StYCp

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks