Overview

overview

10

Static

static

10

972d3ad58c...0N.exe

windows7-x64

10

972d3ad58c...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    972d3ad58cb3f876fef226f15fc70140N.exe

  • Size

    1.9MB

  • Sample

    240902-pp5r3azeqq

  • MD5

    972d3ad58cb3f876fef226f15fc70140

  • SHA1

    28681c4d5a04012a7a91e6259757fbf0c108f53a

  • SHA256

    db4fc003fc912601012f55a6619a4918ca1c2d8b9dbda782d7279022384d1752

  • SHA512

    216aad0bd2922b41e5afa8669200c62b8141a24550ead497caeb2580d9ac7c7344ae371e57bf1a9fe38f933f370e13f035d1673caa3d738f61d09a962cd60d09

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxL:GemTLkNdfE0pZaQN

Score
10/10
kpotxmrigminerstealertrojan

Malware Config

Targets

    • Target

      972d3ad58cb3f876fef226f15fc70140N.exe

    • Size

      1.9MB

    • MD5

      972d3ad58cb3f876fef226f15fc70140

    • SHA1

      28681c4d5a04012a7a91e6259757fbf0c108f53a

    • SHA256

      db4fc003fc912601012f55a6619a4918ca1c2d8b9dbda782d7279022384d1752

    • SHA512

      216aad0bd2922b41e5afa8669200c62b8141a24550ead497caeb2580d9ac7c7344ae371e57bf1a9fe38f933f370e13f035d1673caa3d738f61d09a962cd60d09

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYxL:GemTLkNdfE0pZaQN

    Score
    10/10
    kpotxmrigminerstealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks