General

  • Target

    e1e2731784e8449ba9724b898090249e773839ae2192cd9f335a2b185abd8175

  • Size

    2.5MB

  • Sample

    240711-hz3xwsxena

  • MD5

    ae54d41b4399ed64f51903b5d21ce3a1

  • SHA1

    7b2e7173206ac37f412f3421c384fef56a1f6c90

  • SHA256

    e1e2731784e8449ba9724b898090249e773839ae2192cd9f335a2b185abd8175

  • SHA512

    05ff53181f4892457a5ac3296b20d279508d1aa964e925e1d4b8c17b600297e8cdcb7b99601a29417190b79b9286e2b27eb3a3dbc5f9823874a4c726dbb020c4

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoYw:BemTLkNdfE0pZrwj

Malware Config

Targets

    • Target

      e1e2731784e8449ba9724b898090249e773839ae2192cd9f335a2b185abd8175

    • Size

      2.5MB

    • MD5

      ae54d41b4399ed64f51903b5d21ce3a1

    • SHA1

      7b2e7173206ac37f412f3421c384fef56a1f6c90

    • SHA256

      e1e2731784e8449ba9724b898090249e773839ae2192cd9f335a2b185abd8175

    • SHA512

      05ff53181f4892457a5ac3296b20d279508d1aa964e925e1d4b8c17b600297e8cdcb7b99601a29417190b79b9286e2b27eb3a3dbc5f9823874a4c726dbb020c4

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoYw:BemTLkNdfE0pZrwj

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks