General

  • Target

    1e5f374716616b7c6487d5dd21cb1fd0N.exe

  • Size

    1.4MB

  • Sample

    240723-3bm7ravbmk

  • MD5

    1e5f374716616b7c6487d5dd21cb1fd0

  • SHA1

    554440567af4e6487aeaf39d3bba6cfdc3362cc2

  • SHA256

    927351676dd03a3b2862617662d48f3c431374ec30c584da233da2288526393d

  • SHA512

    f8ec9282448e08315ed086e7843555ce6d76c6de7e855bb3a969da427ab1c56147eae51df7b365e5ac1fc7642ee6f477f954c872fd47c27cb92ce0f9d02820cf

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCRQvOrJ:ROdWCCi7/raZ5aIwC+Agr6SNasrsFC0J

Malware Config

Targets

    • Target

      1e5f374716616b7c6487d5dd21cb1fd0N.exe

    • Size

      1.4MB

    • MD5

      1e5f374716616b7c6487d5dd21cb1fd0

    • SHA1

      554440567af4e6487aeaf39d3bba6cfdc3362cc2

    • SHA256

      927351676dd03a3b2862617662d48f3c431374ec30c584da233da2288526393d

    • SHA512

      f8ec9282448e08315ed086e7843555ce6d76c6de7e855bb3a969da427ab1c56147eae51df7b365e5ac1fc7642ee6f477f954c872fd47c27cb92ce0f9d02820cf

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCRQvOrJ:ROdWCCi7/raZ5aIwC+Agr6SNasrsFC0J

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks