Overview

overview

10

Static

static

10

3634bc652a...2N.exe

windows7-x64

10

3634bc652a...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3634bc652aeab622424ea9e994e179d1109026097084be87f2005ba917280bf2N

  • Size

    1.5MB

  • Sample

    240930-m3zrvs1fkl

  • MD5

    9be01a89a3d3adbf308e25b10dcecfa0

  • SHA1

    d644a2a29d63dbeaacb2f1bbe7d4ec1bdd38ce5b

  • SHA256

    3634bc652aeab622424ea9e994e179d1109026097084be87f2005ba917280bf2

  • SHA512

    61d70c251e4e6bb53fca8ecfe8524da79e58919cd7319bc24c5d03a7793fc26f2ad4ebaf35a4dd371dac7c78b95fc4e6d6afc2803bef12b57a678a33bc3783df

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6SNasrsQm7BZ6:RWWBibyS

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      3634bc652aeab622424ea9e994e179d1109026097084be87f2005ba917280bf2N

    • Size

      1.5MB

    • MD5

      9be01a89a3d3adbf308e25b10dcecfa0

    • SHA1

      d644a2a29d63dbeaacb2f1bbe7d4ec1bdd38ce5b

    • SHA256

      3634bc652aeab622424ea9e994e179d1109026097084be87f2005ba917280bf2

    • SHA512

      61d70c251e4e6bb53fca8ecfe8524da79e58919cd7319bc24c5d03a7793fc26f2ad4ebaf35a4dd371dac7c78b95fc4e6d6afc2803bef12b57a678a33bc3783df

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6SNasrsQm7BZ6:RWWBibyS

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks