General

  • Target

    a82ebc08facefa7f6e1d4386119895110fc6a8f3c9dd6c6c4efdf261bf51f7f1N

  • Size

    1.7MB

  • Sample

    240921-kzxrzsthpb

  • MD5

    152c74e836a5de410dfe807e5928d280

  • SHA1

    5594cab35ba7e48877098092e0b2df473306f808

  • SHA256

    a82ebc08facefa7f6e1d4386119895110fc6a8f3c9dd6c6c4efdf261bf51f7f1

  • SHA512

    d59541b1b73f70d2e222203227fbe550e6691d13c14f38fce4a2f7a07df3932de72ae702be075608ffa5d3113bd805be1ed33495009676f7c8fd76df62dd111c

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWg5O:RWWBibyu

Malware Config

Targets

    • Target

      a82ebc08facefa7f6e1d4386119895110fc6a8f3c9dd6c6c4efdf261bf51f7f1N

    • Size

      1.7MB

    • MD5

      152c74e836a5de410dfe807e5928d280

    • SHA1

      5594cab35ba7e48877098092e0b2df473306f808

    • SHA256

      a82ebc08facefa7f6e1d4386119895110fc6a8f3c9dd6c6c4efdf261bf51f7f1

    • SHA512

      d59541b1b73f70d2e222203227fbe550e6691d13c14f38fce4a2f7a07df3932de72ae702be075608ffa5d3113bd805be1ed33495009676f7c8fd76df62dd111c

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWg5O:RWWBibyu

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks