General

  • Target

    7b2307e20f6fee98271392192e162f48b48ec59cba18a5937c109826f92ef4c9

  • Size

    1.8MB

  • Sample

    240709-a7bjlsxenr

  • MD5

    a96f5714b1bfeb23d4ba931ca16b3fce

  • SHA1

    02424ff8149513d59d6dd6cf06469894b54744de

  • SHA256

    7b2307e20f6fee98271392192e162f48b48ec59cba18a5937c109826f92ef4c9

  • SHA512

    a15e035ddf56b8154d5e80e122bdf1e96028a0f8fc4e7ceade009e5f988f801465b13c5bdcf982bb2c45fa0cb07b4adf18d5209b3bf3c34c0841c5d2bebdb923

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KiG:BemTLkNdfE0pZrww

Malware Config

Targets

    • Target

      7b2307e20f6fee98271392192e162f48b48ec59cba18a5937c109826f92ef4c9

    • Size

      1.8MB

    • MD5

      a96f5714b1bfeb23d4ba931ca16b3fce

    • SHA1

      02424ff8149513d59d6dd6cf06469894b54744de

    • SHA256

      7b2307e20f6fee98271392192e162f48b48ec59cba18a5937c109826f92ef4c9

    • SHA512

      a15e035ddf56b8154d5e80e122bdf1e96028a0f8fc4e7ceade009e5f988f801465b13c5bdcf982bb2c45fa0cb07b4adf18d5209b3bf3c34c0841c5d2bebdb923

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6KiG:BemTLkNdfE0pZrww

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks