General

  • Target

    c84a06e755221e07d2c3944f219bddbee8e9c82bc25a351351e181cf2bc413d9

  • Size

    1.8MB

  • Sample

    240726-dvvcqstcjl

  • MD5

    4065e6f7f996accac763ce701c73472c

  • SHA1

    4d4b2fa9d42fa90c32d27fb82fb217faf9454bac

  • SHA256

    c84a06e755221e07d2c3944f219bddbee8e9c82bc25a351351e181cf2bc413d9

  • SHA512

    b510c6566159c3097684abd84439652e57b09ea3e12537150446fa0306de0821e472089e87931cb538a75c39778cb635d3e78ff4e55d6ae5b769487ad39d0b3a

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxnX:GemTLkNdfE0pZaQl

Malware Config

Targets

    • Target

      c84a06e755221e07d2c3944f219bddbee8e9c82bc25a351351e181cf2bc413d9

    • Size

      1.8MB

    • MD5

      4065e6f7f996accac763ce701c73472c

    • SHA1

      4d4b2fa9d42fa90c32d27fb82fb217faf9454bac

    • SHA256

      c84a06e755221e07d2c3944f219bddbee8e9c82bc25a351351e181cf2bc413d9

    • SHA512

      b510c6566159c3097684abd84439652e57b09ea3e12537150446fa0306de0821e472089e87931cb538a75c39778cb635d3e78ff4e55d6ae5b769487ad39d0b3a

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxnX:GemTLkNdfE0pZaQl

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks