General

  • Target

    c1d4832754376405711286976e80369207d775af104e2e1a4c201a841d0db1bf

  • Size

    1.9MB

  • Sample

    240819-bm7lzswcqc

  • MD5

    f3a9eb685eb045965b777edd351fda2d

  • SHA1

    19e330f71076fbfbf78a2fe09a9ed33865f9fde6

  • SHA256

    c1d4832754376405711286976e80369207d775af104e2e1a4c201a841d0db1bf

  • SHA512

    1d92038cd74b390db943a88e2e99532451b16f31fe5221d68b2a12664bb95aac00029820c19ff13f3cf822806f81bb9c199ccdc537577222e6a0aadbfcddffb4

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxWr:GemTLkNdfE0pZaQU

Malware Config

Targets

    • Target

      c1d4832754376405711286976e80369207d775af104e2e1a4c201a841d0db1bf

    • Size

      1.9MB

    • MD5

      f3a9eb685eb045965b777edd351fda2d

    • SHA1

      19e330f71076fbfbf78a2fe09a9ed33865f9fde6

    • SHA256

      c1d4832754376405711286976e80369207d775af104e2e1a4c201a841d0db1bf

    • SHA512

      1d92038cd74b390db943a88e2e99532451b16f31fe5221d68b2a12664bb95aac00029820c19ff13f3cf822806f81bb9c199ccdc537577222e6a0aadbfcddffb4

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxWr:GemTLkNdfE0pZaQU

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks