General

  • Target

    7eefc63f3ad20693d62390137fe43330N.exe

  • Size

    1.4MB

  • Sample

    240801-q3wxratbnn

  • MD5

    7eefc63f3ad20693d62390137fe43330

  • SHA1

    e255136f369c81085b86e7d4011e884fc67db085

  • SHA256

    d30badda782967ac543a8ed7d452d8a57851f2bc623c926b7173070bbc6f9a1f

  • SHA512

    b87074372099f4d29b467f7fafce57aec9ec0feb36eeeae285f0df787bfe96a59e566717e37e4e3e8968b78b14cc9b9fc6c5dd9ec9d368ee0a6b09d89b9bef49

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCC4:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCZ4

Malware Config

Targets

    • Target

      7eefc63f3ad20693d62390137fe43330N.exe

    • Size

      1.4MB

    • MD5

      7eefc63f3ad20693d62390137fe43330

    • SHA1

      e255136f369c81085b86e7d4011e884fc67db085

    • SHA256

      d30badda782967ac543a8ed7d452d8a57851f2bc623c926b7173070bbc6f9a1f

    • SHA512

      b87074372099f4d29b467f7fafce57aec9ec0feb36eeeae285f0df787bfe96a59e566717e37e4e3e8968b78b14cc9b9fc6c5dd9ec9d368ee0a6b09d89b9bef49

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCC4:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCZ4

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks