General

  • Target

    7e41a9850259269d11537879c8eea670N.exe

  • Size

    2.1MB

  • Sample

    240901-evv5ps1emp

  • MD5

    7e41a9850259269d11537879c8eea670

  • SHA1

    cc3ca4b1eec487f29326613dfad1688ec3f0a3a2

  • SHA256

    4abbd726b2289e10cbdca969f838580e7003067da1aaaf4db912a5d1047b8775

  • SHA512

    70bdc92493d01d65fca3590da38f1a5aa0015bce0439f5bd50f533f94833b0519fd55eb4c1708b851f2080da8e04a17f864c69efb4000e57c492dfd4ef4c5b89

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVA:GemTLkNdfE0pZaQZ

Malware Config

Targets

    • Target

      7e41a9850259269d11537879c8eea670N.exe

    • Size

      2.1MB

    • MD5

      7e41a9850259269d11537879c8eea670

    • SHA1

      cc3ca4b1eec487f29326613dfad1688ec3f0a3a2

    • SHA256

      4abbd726b2289e10cbdca969f838580e7003067da1aaaf4db912a5d1047b8775

    • SHA512

      70bdc92493d01d65fca3590da38f1a5aa0015bce0439f5bd50f533f94833b0519fd55eb4c1708b851f2080da8e04a17f864c69efb4000e57c492dfd4ef4c5b89

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVA:GemTLkNdfE0pZaQZ

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks