General

  • Target

    bda0d2255dac979b209ea5f10111f780N.exe

  • Size

    1.4MB

  • Sample

    240723-qext5s1gjl

  • MD5

    bda0d2255dac979b209ea5f10111f780

  • SHA1

    78448bcafe95328aac7ae14cd4428fc4041ecf82

  • SHA256

    5f5616567aea0e87a87089c2a13dfcf958d8629e1cf8a10dd9c3e1d486901707

  • SHA512

    fcf722f974d52dff05553823c4ce113993b7bdfe8451d62ed1e0e1c45fbcd31eda7659b6cfcc3dde756da2043a4ea7a829601369a3db9239eb4eaac65e591715

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCsf:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCTf

Malware Config

Targets

    • Target

      bda0d2255dac979b209ea5f10111f780N.exe

    • Size

      1.4MB

    • MD5

      bda0d2255dac979b209ea5f10111f780

    • SHA1

      78448bcafe95328aac7ae14cd4428fc4041ecf82

    • SHA256

      5f5616567aea0e87a87089c2a13dfcf958d8629e1cf8a10dd9c3e1d486901707

    • SHA512

      fcf722f974d52dff05553823c4ce113993b7bdfe8451d62ed1e0e1c45fbcd31eda7659b6cfcc3dde756da2043a4ea7a829601369a3db9239eb4eaac65e591715

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCsf:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCTf

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks