General

  • Target

    9232dff7676f2b1ac0368ad268991430N.exe

  • Size

    1.3MB

  • Sample

    240827-stdqxsxdqa

  • MD5

    9232dff7676f2b1ac0368ad268991430

  • SHA1

    1a0b244da661fde327ef480a3e30efa486848e3e

  • SHA256

    d9ccbf07914f132192ad2622e4069f7c16364990b2266d830552bda85de163c5

  • SHA512

    688ceb17b46abd212a2664eee6243130a8f40d465e0f29ec14f0752b7beaefb9792147eb0c6007178068773ec472e28018546bcd80e89b9d9d23ceba83c9caba

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQt+4En+bcMAOxA5zYlU+jCcl4d:ROdWCCi7/raZ5aIwC+Agr6StVEnmcKx2

Malware Config

Targets

    • Target

      9232dff7676f2b1ac0368ad268991430N.exe

    • Size

      1.3MB

    • MD5

      9232dff7676f2b1ac0368ad268991430

    • SHA1

      1a0b244da661fde327ef480a3e30efa486848e3e

    • SHA256

      d9ccbf07914f132192ad2622e4069f7c16364990b2266d830552bda85de163c5

    • SHA512

      688ceb17b46abd212a2664eee6243130a8f40d465e0f29ec14f0752b7beaefb9792147eb0c6007178068773ec472e28018546bcd80e89b9d9d23ceba83c9caba

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQt+4En+bcMAOxA5zYlU+jCcl4d:ROdWCCi7/raZ5aIwC+Agr6StVEnmcKx2

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks