kpot | 3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5 | Triage

Submit
Reports

Overview

overview

Static

static

3680d5193c...5N.exe

windows7-x64

3680d5193c...5N.exe

windows10-2004-x64

Sharing

General

Target

3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5N
Size

1.7MB
Sample

240921-avvrqawfrg
MD5

7c6522f7469de52c8a16109aebbaa110
SHA1

ff77eb09d29c6d7adc73600e8e683e6570ca3711
SHA256

3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5
SHA512

070b0d8d564cd7bfad9266677d5b26b0f2525f0b6f3385f456bc555246a306c2558727d3eec6468bc46aa57c92360c93ca7c03ab8065668c8826d4a03c6a1d8e
SSDEEP

49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWgZe:RWWBibye

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

upx miner kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5N.exe

Resource

win7-20240903-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5N.exe

Resource

win10v2004-20240802-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5N
- Size
  
  1.7MB
- MD5
  
  7c6522f7469de52c8a16109aebbaa110
- SHA1
  
  ff77eb09d29c6d7adc73600e8e683e6570ca3711
- SHA256
  
  3680d5193cf0e643ba491cea3fccb3438637520d46558884dbe17d3819b6d7e5
- SHA512
  
  070b0d8d564cd7bfad9266677d5b26b0f2525f0b6f3385f456bc555246a306c2558727d3eec6468bc46aa57c92360c93ca7c03ab8065668c8826d4a03c6a1d8e
- SSDEEP
  
  49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWgZe:RWWBibye
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxminerkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy