kpot | 00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0 | Triage

Submit
Reports

Overview

overview

Static

static

00ca5b77ee...0N.exe

windows7-x64

00ca5b77ee...0N.exe

windows10-2004-x64

Sharing

General

Target

00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0N
Size

2.5MB
Sample

240927-dbgyas1gjn
MD5

6af1af6a3186a7b1286513e3a7d50ae0
SHA1

457bd0ee6dec472bc4e1c4258d60abc5e08443a4
SHA256

00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0
SHA512

7ec354beea1e7fd5476eb35d9f8cc270783843bba14c36c3ef2319ad25d2d572a6fa2cea0197f3b9ff983bd7ba53c0e0cfa3eb8aa71703195833bd744f6fa998
SSDEEP

49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqq+jCpLWti:oemTLkNdfE0pZrwr

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0N.exe

Resource

win7-20240903-en

kpot xmrig miner stealer trojan upx

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0N.exe

Resource

win10v2004-20240802-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0N
- Size
  
  2.5MB
- MD5
  
  6af1af6a3186a7b1286513e3a7d50ae0
- SHA1
  
  457bd0ee6dec472bc4e1c4258d60abc5e08443a4
- SHA256
  
  00ca5b77ee9e344df9e0285498370a5ccc7e08c0fe9ffa607c2771b86ffde8e0
- SHA512
  
  7ec354beea1e7fd5476eb35d9f8cc270783843bba14c36c3ef2319ad25d2d572a6fa2cea0197f3b9ff983bd7ba53c0e0cfa3eb8aa71703195833bd744f6fa998
- SSDEEP
  
  49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqq+jCpLWti:oemTLkNdfE0pZrwr
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2024

Terms | Privacy