General

  • Target

    b3ef575a68e51fc52ce4815dadce69a7f700b89d539379ae2a7bbcbbfcbc9af4

  • Size

    2.5MB

  • MD5

    dad5488337ebc4c81acc5c7415e337f0

  • SHA1

    ce0fb458b645022531ab73ecf107b5fdadef01a4

  • SHA256

    b3ef575a68e51fc52ce4815dadce69a7f700b89d539379ae2a7bbcbbfcbc9af4

  • SHA512

    a41f85c2c86c453bdb6f90c6aadf0c0d27c4b5afebe05f1afcb89afd5da79b4983b6d363e9b0a88cc7975743c01aad5030dc8c7ec8229953f77e3cb7be487b32

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoD7w:BemTLkNdfE0pZrwW

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b3ef575a68e51fc52ce4815dadce69a7f700b89d539379ae2a7bbcbbfcbc9af4
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections