General

  • Target

    24e55f3cff2a12022cb40867f407a5f0N.exe

  • Size

    1.1MB

  • Sample

    240806-25qdjatdmk

  • MD5

    24e55f3cff2a12022cb40867f407a5f0

  • SHA1

    98976b0ebda6b8584b6ddcf13732317e1a5fd033

  • SHA256

    a914977ffe4fc87922509abbfa33844b01957434f3e67a1e78f277497ab5bca3

  • SHA512

    cec42383d8b6460a8efc1af94700dbade8f14adc0ae5e35eb9ae48406b66da55bce7461d9695c656b298ee849274e510bc424e2ce7c4b3e186cc51c57914bd68

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQGCZLFdGm13Jg/zj:ROdWCCi7/raZ5aIwC+Agr6S/FpJc

Malware Config

Targets

    • Target

      24e55f3cff2a12022cb40867f407a5f0N.exe

    • Size

      1.1MB

    • MD5

      24e55f3cff2a12022cb40867f407a5f0

    • SHA1

      98976b0ebda6b8584b6ddcf13732317e1a5fd033

    • SHA256

      a914977ffe4fc87922509abbfa33844b01957434f3e67a1e78f277497ab5bca3

    • SHA512

      cec42383d8b6460a8efc1af94700dbade8f14adc0ae5e35eb9ae48406b66da55bce7461d9695c656b298ee849274e510bc424e2ce7c4b3e186cc51c57914bd68

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQGCZLFdGm13Jg/zj:ROdWCCi7/raZ5aIwC+Agr6S/FpJc

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks