General

  • Target

    d2357edd0fdb91a4b641fd2ec2ba3340N.exe

  • Size

    1.4MB

  • Sample

    240813-vqsf1swcpf

  • MD5

    d2357edd0fdb91a4b641fd2ec2ba3340

  • SHA1

    0af9ca8d62ac9b79384f1f9694cd224476c720f9

  • SHA256

    5d8264043f8fc86320133b0b97a3ad2fb729694e9afbf751bb8c6c865bf34d6a

  • SHA512

    f97a5060d0de1bbdd17484b8bace3ec29163b1dd342681ddbfe29162f8142485ebecb1dde1b06ed270d9266d34beb694c96414499e2f12cb5d25d0ea0ae48ea2

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCCq4:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCZ/

Malware Config

Targets

    • Target

      d2357edd0fdb91a4b641fd2ec2ba3340N.exe

    • Size

      1.4MB

    • MD5

      d2357edd0fdb91a4b641fd2ec2ba3340

    • SHA1

      0af9ca8d62ac9b79384f1f9694cd224476c720f9

    • SHA256

      5d8264043f8fc86320133b0b97a3ad2fb729694e9afbf751bb8c6c865bf34d6a

    • SHA512

      f97a5060d0de1bbdd17484b8bace3ec29163b1dd342681ddbfe29162f8142485ebecb1dde1b06ed270d9266d34beb694c96414499e2f12cb5d25d0ea0ae48ea2

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+s8juCCCq4:ROdWCCi7/raZ5aIwC+Agr6SNasrsFCZ/

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks