General

  • Target

    2051a88162ebd6a45eb14576afbe0e98c7c956bb20aaf96729326c5e27bb9128

  • Size

    2.5MB

  • Sample

    240707-yfq2zsxcpn

  • MD5

    853dcaecdbdac2e0d334d90daf2f473d

  • SHA1

    26ed8b7e4b420c89dead0c8c53e068bac00668fc

  • SHA256

    2051a88162ebd6a45eb14576afbe0e98c7c956bb20aaf96729326c5e27bb9128

  • SHA512

    fd767a35d4b4d8ab5251aa80d988ff470396903ea457aab301a7d9a9abf5862d78e1a90bd78ed77a9efc918e5b7fd92b7b5dd7ea17450bafffa576cddfdaa017

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eox:BemTLkNdfE0pZrwP

Malware Config

Targets

    • Target

      2051a88162ebd6a45eb14576afbe0e98c7c956bb20aaf96729326c5e27bb9128

    • Size

      2.5MB

    • MD5

      853dcaecdbdac2e0d334d90daf2f473d

    • SHA1

      26ed8b7e4b420c89dead0c8c53e068bac00668fc

    • SHA256

      2051a88162ebd6a45eb14576afbe0e98c7c956bb20aaf96729326c5e27bb9128

    • SHA512

      fd767a35d4b4d8ab5251aa80d988ff470396903ea457aab301a7d9a9abf5862d78e1a90bd78ed77a9efc918e5b7fd92b7b5dd7ea17450bafffa576cddfdaa017

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eox:BemTLkNdfE0pZrwP

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks