Overview

overview

10

Static

static

10

69746d7a7b...8N.exe

windows7-x64

10

69746d7a7b...8N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69746d7a7baa1a487642d64ae8648c0c4309127c06332d795bdaf9138e04c048N

  • Size

    1.8MB

  • Sample

    241026-jqmpzszjfn

  • MD5

    ec843e258df9420c6eb7573722871620

  • SHA1

    138248b994471f9913d0898ef1f2c00a09c743fc

  • SHA256

    69746d7a7baa1a487642d64ae8648c0c4309127c06332d795bdaf9138e04c048

  • SHA512

    8f70e050a2c3c671d82c269b4498a6f6a0bea003043a924228a58773470b99757596512353bd0c5e1a96787e8e1210909171d29d762a49bb553d45d784d65d1b

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWlEs:RWWBibys

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      69746d7a7baa1a487642d64ae8648c0c4309127c06332d795bdaf9138e04c048N

    • Size

      1.8MB

    • MD5

      ec843e258df9420c6eb7573722871620

    • SHA1

      138248b994471f9913d0898ef1f2c00a09c743fc

    • SHA256

      69746d7a7baa1a487642d64ae8648c0c4309127c06332d795bdaf9138e04c048

    • SHA512

      8f70e050a2c3c671d82c269b4498a6f6a0bea003043a924228a58773470b99757596512353bd0c5e1a96787e8e1210909171d29d762a49bb553d45d784d65d1b

    • SSDEEP

      49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWlEs:RWWBibys

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • Kpot family

      kpot

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks