kpot | 314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

314da26583...df.exe

windows7-x64

314da26583...df.exe

windows10-2004-x64

Sharing

General

Target

314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df
Size

1.8MB
Sample

250124-1sz7jasjbn
MD5

01a2d5b9240007c8a8cce9d6e8d6532f
SHA1

d0d5f8723150397e8e1c3cc6ba90300d75555fdb
SHA256

314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df
SHA512

450bc3f9634ed37ea2e1f53fa476b1649f26ced042b03c1885237df9dc269e50486abe31379123e8afc3a56c074c2e470fbc9be24d51fc3555c41dee925ecfdd
SSDEEP

49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SGtgdz:BemTLkNdfE0pZrwO

Score

10^/10

kpot xmrig miner stealer trojan upx

Static task

static1

miner upx kpot xmrig

6 signatures

Behavioral task

behavioral1

Sample

314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df.exe

Resource

win7-20240729-en

kpot xmrig miner stealer trojan upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df.exe

Resource

win10v2004-20241007-en

kpot xmrig miner stealer trojan upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df
- Size
  
  1.8MB
- MD5
  
  01a2d5b9240007c8a8cce9d6e8d6532f
- SHA1
  
  d0d5f8723150397e8e1c3cc6ba90300d75555fdb
- SHA256
  
  314da2658394fb6c9d442ae811419fea9ee77692a2fb248e9e1c79257dd234df
- SHA512
  
  450bc3f9634ed37ea2e1f53fa476b1649f26ced042b03c1885237df9dc269e50486abe31379123e8afc3a56c074c2e470fbc9be24d51fc3555c41dee925ecfdd
- SSDEEP
  
  49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SGtgdz:BemTLkNdfE0pZrwO
Score

10^/10

kpot xmrig miner stealer trojan upx
- KPOT
  KPOT is an information stealer that steals user data and account credentials.
  trojan stealer kpot
- KPOT Core Executable
- Kpot family
  kpot
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

minerupxkpotxmrig

behavioral1

kpotxmrigminerstealertrojanupx

behavioral2

kpotxmrigminerstealertrojanupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.