kpot | 33502ceb924495488aa4d6ea382a4fceca13b327d782b0d281788ce1ce486631 | Triage

Submit
Reports

Overview

overview

Static

static

af8c4e6646...0N.exe

windows7-x64

af8c4e6646...0N.exe

windows10-2004-x64

Sharing

General

Target

af8c4e664663a89f1e34ef619d996190N.exe
Size

1.4MB
Sample

240724-vz2faa1gkg
MD5

af8c4e664663a89f1e34ef619d996190
SHA1

bc40967de10113b877939274633f6d940f165a23
SHA256

33502ceb924495488aa4d6ea382a4fceca13b327d782b0d281788ce1ce486631
SHA512

74d962a5fe35288c03d8071cd902c968c34820f1aec657a85465b910e6637dbde72f8bf6917ed166518ca01579797fa1727dbf7b05efc05fae9c5a623d8c999e
SSDEEP

24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hlrZC:ROdWCCi7/raZ5aIwC+Agr6StYa

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

upx miner kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

af8c4e664663a89f1e34ef619d996190N.exe

Resource

win7-20240708-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

af8c4e664663a89f1e34ef619d996190N.exe

Resource

win10v2004-20240709-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  af8c4e664663a89f1e34ef619d996190N.exe
- Size
  
  1.4MB
- MD5
  
  af8c4e664663a89f1e34ef619d996190
- SHA1
  
  bc40967de10113b877939274633f6d940f165a23
- SHA256
  
  33502ceb924495488aa4d6ea382a4fceca13b327d782b0d281788ce1ce486631
- SHA512
  
  74d962a5fe35288c03d8071cd902c968c34820f1aec657a85465b910e6637dbde72f8bf6917ed166518ca01579797fa1727dbf7b05efc05fae9c5a623d8c999e
- SSDEEP
  
  24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hlrZC:ROdWCCi7/raZ5aIwC+Agr6StYa
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxminerkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2024

Terms | Privacy