General

  • Target

    dde3668a0e6a4717fab960fc6b060060N.exe

  • Size

    2.1MB

  • MD5

    dde3668a0e6a4717fab960fc6b060060

  • SHA1

    3e39a5a618597e34fd1851e722c35b565f6d764b

  • SHA256

    894f6eb83ebac4ae46424e056a7ae61eb91353982e220cbfd53072be40c50329

  • SHA512

    7236ab71d512563b6e7fa54ed8860411a3953d0e3dd44c67c2e5ac5d88bedc005a110f474496d040aa0f13123919fae795c391340175e672c314b30634ef8195

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iV/:GemTLkNdfE0pZaQO

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dde3668a0e6a4717fab960fc6b060060N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections