General

  • Target

    38a23e6f7bf8a6bf0f1db7bec45e7c989732f75e836c72b5193b5390e585085f

  • Size

    1.9MB

  • Sample

    240816-z5m73axenh

  • MD5

    86dab10d8db719551deb4cd1783ce9aa

  • SHA1

    0d9648a2a96075c29568e39126949a83519b6d18

  • SHA256

    38a23e6f7bf8a6bf0f1db7bec45e7c989732f75e836c72b5193b5390e585085f

  • SHA512

    3e640d18c5e994fc6b76a9a48bdf140436becbbfbeaf6091ac2810cc5dd05392f112cb8f6075c119666dc2d43ceeaed5664189afc87d3a16d8e8e904992b05a5

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StPMVIev:BemTLkNdfE0pZrwR

Malware Config

Targets

    • Target

      38a23e6f7bf8a6bf0f1db7bec45e7c989732f75e836c72b5193b5390e585085f

    • Size

      1.9MB

    • MD5

      86dab10d8db719551deb4cd1783ce9aa

    • SHA1

      0d9648a2a96075c29568e39126949a83519b6d18

    • SHA256

      38a23e6f7bf8a6bf0f1db7bec45e7c989732f75e836c72b5193b5390e585085f

    • SHA512

      3e640d18c5e994fc6b76a9a48bdf140436becbbfbeaf6091ac2810cc5dd05392f112cb8f6075c119666dc2d43ceeaed5664189afc87d3a16d8e8e904992b05a5

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StPMVIev:BemTLkNdfE0pZrwR

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks