Overview

overview

10

Static

static

10

18f554da22...0N.exe

windows7-x64

10

18f554da22...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    18f554da22549d2b6bd32b894ce346a0N.exe

  • Size

    2.2MB

  • Sample

    240901-v9he6axgrg

  • MD5

    18f554da22549d2b6bd32b894ce346a0

  • SHA1

    d54310bfe14a243e874e6b6b90ec58321e0b8cf7

  • SHA256

    a3e9afc3bfdb6011c40abc13ec02a9f655b3ba90e48fade64eeff25528decab4

  • SHA512

    8f245451d5553e1d29fafd507d4747bb614bbae7ade3310213255573c1990334720f2f498c165f8e7cb510f0cb35b41b882bec4b9326be9a7c540b2d20d722b3

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVJT:GemTLkNdfE0pZaQI

Score
10/10
kpotxmrigminerstealertrojan

Malware Config

Targets

    • Target

      18f554da22549d2b6bd32b894ce346a0N.exe

    • Size

      2.2MB

    • MD5

      18f554da22549d2b6bd32b894ce346a0

    • SHA1

      d54310bfe14a243e874e6b6b90ec58321e0b8cf7

    • SHA256

      a3e9afc3bfdb6011c40abc13ec02a9f655b3ba90e48fade64eeff25528decab4

    • SHA512

      8f245451d5553e1d29fafd507d4747bb614bbae7ade3310213255573c1990334720f2f498c165f8e7cb510f0cb35b41b882bec4b9326be9a7c540b2d20d722b3

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVJT:GemTLkNdfE0pZaQI

    Score
    10/10
    kpotxmrigminerstealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks