Overview

overview

10

Static

static

3

2025-02-19...ia.exe

windows7-x64

10

2025-02-19...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-02-19_5e99f519fad8e850656b2f2aedb96b98_mafia

  • Size

    282KB

  • Sample

    250219-c2bzaswrz5

  • MD5

    5e99f519fad8e850656b2f2aedb96b98

  • SHA1

    49b2d9ea4b2a1a73c154277007bd53c83650c200

  • SHA256

    61b1b7c8b22311194c45f20588c0939037f27b1343b4e80ff288cbf0f3b13b67

  • SHA512

    31b3061b8e61323d0bc27f620d368bfa2da8698a3b79535ee176ce98fb86a17b4f632f2336128b9c3d981137ee8747e29ae3ceaf5a36f71072aa9175360dcdd7

  • SSDEEP

    6144:fwqbyL82mkP+6k4C2XFMqQiIOwpmvAUIqROh7T:fwqZ2Fk12JQiIxpmvceAT

Score
10/10
kpotdiscoverystealertrojan

Malware Config

Targets

    • Target

      2025-02-19_5e99f519fad8e850656b2f2aedb96b98_mafia

    • Size

      282KB

    • MD5

      5e99f519fad8e850656b2f2aedb96b98

    • SHA1

      49b2d9ea4b2a1a73c154277007bd53c83650c200

    • SHA256

      61b1b7c8b22311194c45f20588c0939037f27b1343b4e80ff288cbf0f3b13b67

    • SHA512

      31b3061b8e61323d0bc27f620d368bfa2da8698a3b79535ee176ce98fb86a17b4f632f2336128b9c3d981137ee8747e29ae3ceaf5a36f71072aa9175360dcdd7

    • SSDEEP

      6144:fwqbyL82mkP+6k4C2XFMqQiIOwpmvAUIqROh7T:fwqZ2Fk12JQiIxpmvceAT

    Score
    10/10
    kpotdiscoverystealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • Kpot family

      kpot

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks