Overview

overview

10

Static

static

10

fdcfe4f954...fc.exe

windows7-x64

10

fdcfe4f954...fc.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fdcfe4f9543a8d5cea995a0db4e5f3d048258bfe79126cba2aad9d5069de5efc

  • Size

    1.8MB

  • Sample

    241010-eb5vssxalc

  • MD5

    e060423bfa5db35a5fb1c409844d9c74

  • SHA1

    e6c6bb5bb22b242f477c7b7f37e2067c10b1027e

  • SHA256

    fdcfe4f9543a8d5cea995a0db4e5f3d048258bfe79126cba2aad9d5069de5efc

  • SHA512

    6f411a9b252585c6e650b88cfb60731e269bbd042188c4255b818467a93d8be63570ab8c9e94c749c89377480ff806e01ef82b5e5ad83402926f1f5336be6b20

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWl5:RWWBibyW

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      fdcfe4f9543a8d5cea995a0db4e5f3d048258bfe79126cba2aad9d5069de5efc

    • Size

      1.8MB

    • MD5

      e060423bfa5db35a5fb1c409844d9c74

    • SHA1

      e6c6bb5bb22b242f477c7b7f37e2067c10b1027e

    • SHA256

      fdcfe4f9543a8d5cea995a0db4e5f3d048258bfe79126cba2aad9d5069de5efc

    • SHA512

      6f411a9b252585c6e650b88cfb60731e269bbd042188c4255b818467a93d8be63570ab8c9e94c749c89377480ff806e01ef82b5e5ad83402926f1f5336be6b20

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWl5:RWWBibyW

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks