General

  • Target

    ac4dcd61b3feeb9c6e201cbf57bf0cc0N.exe

  • Size

    1.7MB

  • Sample

    240827-lzqjcavelh

  • MD5

    ac4dcd61b3feeb9c6e201cbf57bf0cc0

  • SHA1

    2efcd2db1fc96f3aeff6e13eafd33a1ff2a741f2

  • SHA256

    5a39b91b3805dbfcfa9d95f0b31fd12b313146730d5e8183370bb3d11768233b

  • SHA512

    89b63d219fb4c4814fa01a1fd48c0c9d82fe8b1ae4c6010488127f3195e0aa958cb327d23c42e9375094d93b51ac609628b0293839d714861954c0af26b659e3

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWgD:RWWBibyl

Malware Config

Targets

    • Target

      ac4dcd61b3feeb9c6e201cbf57bf0cc0N.exe

    • Size

      1.7MB

    • MD5

      ac4dcd61b3feeb9c6e201cbf57bf0cc0

    • SHA1

      2efcd2db1fc96f3aeff6e13eafd33a1ff2a741f2

    • SHA256

      5a39b91b3805dbfcfa9d95f0b31fd12b313146730d5e8183370bb3d11768233b

    • SHA512

      89b63d219fb4c4814fa01a1fd48c0c9d82fe8b1ae4c6010488127f3195e0aa958cb327d23c42e9375094d93b51ac609628b0293839d714861954c0af26b659e3

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWgD:RWWBibyl

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks