General

  • Target

    633711c58454439540f38296777c5e10N.exe

  • Size

    2.1MB

  • Sample

    240902-khgz7sxdjc

  • MD5

    633711c58454439540f38296777c5e10

  • SHA1

    cc8f99221c767da6c66ed30630e8120ab05bb72c

  • SHA256

    7de0c85afcfdcdb4d9426d3dc1f6c2acc857ba6bba6d233e4ae51d593c3d8767

  • SHA512

    f227144d5015ca5053f9eae089535636b64b801e34f62fe42751e9c400110434381da23376aa1537c57e4735cac932861c2db323c8433c7c9f8b1eff9fdf5d2c

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVF+:GemTLkNdfE0pZaQb

Malware Config

Targets

    • Target

      633711c58454439540f38296777c5e10N.exe

    • Size

      2.1MB

    • MD5

      633711c58454439540f38296777c5e10

    • SHA1

      cc8f99221c767da6c66ed30630e8120ab05bb72c

    • SHA256

      7de0c85afcfdcdb4d9426d3dc1f6c2acc857ba6bba6d233e4ae51d593c3d8767

    • SHA512

      f227144d5015ca5053f9eae089535636b64b801e34f62fe42751e9c400110434381da23376aa1537c57e4735cac932861c2db323c8433c7c9f8b1eff9fdf5d2c

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2iVF+:GemTLkNdfE0pZaQb

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks