Overview

overview

10

Static

static

10

69b94ad1dc...0N.exe

windows7-x64

10

69b94ad1dc...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69b94ad1dc11d63482b95cafe2237020N.exe

  • Size

    1.5MB

  • Sample

    240715-ddn5dsxdmf

  • MD5

    69b94ad1dc11d63482b95cafe2237020

  • SHA1

    3dbef8d3f7705690f13637e704edcc2a0ea96fc9

  • SHA256

    ba0187af1148a2de4da9421301f5578be7418fcb985f3984cf452eecb866a7a4

  • SHA512

    d79bf06f4625cc535c29816989de5bd8422fca478a731b698c783ba2612b35f98a2992ca5a012fed995a8d6a2ddb50a2047230758f21364f8ad8b034c7a9504b

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6StVEnmcK9dFCftnm:RWWBibyc

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      69b94ad1dc11d63482b95cafe2237020N.exe

    • Size

      1.5MB

    • MD5

      69b94ad1dc11d63482b95cafe2237020

    • SHA1

      3dbef8d3f7705690f13637e704edcc2a0ea96fc9

    • SHA256

      ba0187af1148a2de4da9421301f5578be7418fcb985f3984cf452eecb866a7a4

    • SHA512

      d79bf06f4625cc535c29816989de5bd8422fca478a731b698c783ba2612b35f98a2992ca5a012fed995a8d6a2ddb50a2047230758f21364f8ad8b034c7a9504b

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6StVEnmcK9dFCftnm:RWWBibyc

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks