General

  • Target

    1621db5bec9ff0671edd2a1b86d21620N.exe

  • Size

    2.4MB

  • Sample

    240706-z94evawbnh

  • MD5

    1621db5bec9ff0671edd2a1b86d21620

  • SHA1

    9ca3776ee7de4e2fc5385d3100f6d43a333e33c5

  • SHA256

    43638e494cc8961dce6669d000a7204c24cce0c8d6be773ca1b362e0251f2c1f

  • SHA512

    26d1be0f086bc52f60226e9eaa38713a636422e1cbf5151b2204af79a6953dc8e035dcc530624a85b9415880f437e1ac55644af316afc2a51ffbe3110ac176cd

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3i3:BemTLkNdfE0pZrwi

Malware Config

Targets

    • Target

      1621db5bec9ff0671edd2a1b86d21620N.exe

    • Size

      2.4MB

    • MD5

      1621db5bec9ff0671edd2a1b86d21620

    • SHA1

      9ca3776ee7de4e2fc5385d3100f6d43a333e33c5

    • SHA256

      43638e494cc8961dce6669d000a7204c24cce0c8d6be773ca1b362e0251f2c1f

    • SHA512

      26d1be0f086bc52f60226e9eaa38713a636422e1cbf5151b2204af79a6953dc8e035dcc530624a85b9415880f437e1ac55644af316afc2a51ffbe3110ac176cd

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKrwwyGwSw3i3:BemTLkNdfE0pZrwi

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks