General

  • Target

    95e7faae08507337886738b1c63ac000N.exe

  • Size

    1.7MB

  • Sample

    240825-2hr9ls1bjj

  • MD5

    95e7faae08507337886738b1c63ac000

  • SHA1

    9aeac4b1f79947ce5f6250c8a5c3df92acd94f99

  • SHA256

    b9e21ff8488f5f31fbf00520086eace59b2f604edabc023546047da67fababf3

  • SHA512

    1999f3842ffd13fe61e78ed1fa3ceedd56cd9978c5fa6d395016a5322a694f19c3394c2ef9968f1294b50007e73b6077b1df0faec952f663e953aa6e3830404e

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWh:RWWBiby+

Malware Config

Targets

    • Target

      95e7faae08507337886738b1c63ac000N.exe

    • Size

      1.7MB

    • MD5

      95e7faae08507337886738b1c63ac000

    • SHA1

      9aeac4b1f79947ce5f6250c8a5c3df92acd94f99

    • SHA256

      b9e21ff8488f5f31fbf00520086eace59b2f604edabc023546047da67fababf3

    • SHA512

      1999f3842ffd13fe61e78ed1fa3ceedd56cd9978c5fa6d395016a5322a694f19c3394c2ef9968f1294b50007e73b6077b1df0faec952f663e953aa6e3830404e

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWh:RWWBiby+

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks