Overview

overview

10

Static

static

1

2025-01-12...ia.exe

windows7-x64

10

2025-01-12...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-12_39308bdae1bcb97b0c71721cf7954525_mafia

  • Size

    374KB

  • Sample

    250112-z8t5sazmaz

  • MD5

    39308bdae1bcb97b0c71721cf7954525

  • SHA1

    cfd9fbc1ad512ac691d8b089b1c57680f5f9e06e

  • SHA256

    e70d40bb6262aac50e0e8a7c54c8fb5b0c8ee6b1f78b4456092884b6973a7e60

  • SHA512

    28f100b17c0361d3d17754a4b2ba8c025e158f155065e3dcf2966e90741400d1a40d061fa3514734477aea6d90ca837b31f19fa595d28095d4a8e549a986c0c3

  • SSDEEP

    6144:rA/KDLXQ7rjDb8zPYbU2wbKZhVLgneQZGirnZq/BKo9CUE7ju1x2pClJ:0/6CXUzAbUcZjvQZprnQ/BMujoClJ

Score
10/10
kpotdiscoverystealertrojan

Malware Config

Targets

    • Target

      2025-01-12_39308bdae1bcb97b0c71721cf7954525_mafia

    • Size

      374KB

    • MD5

      39308bdae1bcb97b0c71721cf7954525

    • SHA1

      cfd9fbc1ad512ac691d8b089b1c57680f5f9e06e

    • SHA256

      e70d40bb6262aac50e0e8a7c54c8fb5b0c8ee6b1f78b4456092884b6973a7e60

    • SHA512

      28f100b17c0361d3d17754a4b2ba8c025e158f155065e3dcf2966e90741400d1a40d061fa3514734477aea6d90ca837b31f19fa595d28095d4a8e549a986c0c3

    • SSDEEP

      6144:rA/KDLXQ7rjDb8zPYbU2wbKZhVLgneQZGirnZq/BKo9CUE7ju1x2pClJ:0/6CXUzAbUcZjvQZprnQ/BMujoClJ

    Score
    10/10
    kpotdiscoverystealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • Kpot family

      kpot

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks