General

  • Target

    59fb81187cb70a26da42289ddc0ab430N.exe

  • Size

    1.2MB

  • Sample

    240807-d596yatbrf

  • MD5

    59fb81187cb70a26da42289ddc0ab430

  • SHA1

    e957cb4f60589f393f1be2595fc246b551b596a5

  • SHA256

    9f56605992a9ead438f01008e69dbe86e671763d59ea347aee3f9085473fe69e

  • SHA512

    78b8cd30696b09e576d0218b261102272a5c52567d9ad81348d2d18faa60b9f2347394b72d0f269f2c5efa30a8c66d01a8d29621a4dc573b0ae9ad8b872509c1

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQGCZLFdGm13JoO:ROdWCCi7/raZ5aIwC+Agr6S/FpJD

Malware Config

Targets

    • Target

      59fb81187cb70a26da42289ddc0ab430N.exe

    • Size

      1.2MB

    • MD5

      59fb81187cb70a26da42289ddc0ab430

    • SHA1

      e957cb4f60589f393f1be2595fc246b551b596a5

    • SHA256

      9f56605992a9ead438f01008e69dbe86e671763d59ea347aee3f9085473fe69e

    • SHA512

      78b8cd30696b09e576d0218b261102272a5c52567d9ad81348d2d18faa60b9f2347394b72d0f269f2c5efa30a8c66d01a8d29621a4dc573b0ae9ad8b872509c1

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQGCZLFdGm13JoO:ROdWCCi7/raZ5aIwC+Agr6S/FpJD

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks