Overview

overview

10

Static

static

10

b54600aa91...d2.exe

windows7-x64

10

b54600aa91...d2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b54600aa915f844fef2c90cac398aff80ff818b31a369a7e02769ecac664b9d2

  • Size

    1.9MB

  • Sample

    250319-2hdq8azmw2

  • MD5

    8475b55330fd569cb6a09b8f1d3c6d58

  • SHA1

    2827334ed9d651ef559f35d4ba7bc7e48bc0c935

  • SHA256

    b54600aa915f844fef2c90cac398aff80ff818b31a369a7e02769ecac664b9d2

  • SHA512

    0c85585643a0f559e293b01c2c2122129a5a45352096423fe342f0e818ddd9746cd946248e5bf8469c2e3b3d00709232a5af58bfc722ca0f2d61817a005691cc

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEn0kL:BemTLkNdfE0pZrwZ

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      b54600aa915f844fef2c90cac398aff80ff818b31a369a7e02769ecac664b9d2

    • Size

      1.9MB

    • MD5

      8475b55330fd569cb6a09b8f1d3c6d58

    • SHA1

      2827334ed9d651ef559f35d4ba7bc7e48bc0c935

    • SHA256

      b54600aa915f844fef2c90cac398aff80ff818b31a369a7e02769ecac664b9d2

    • SHA512

      0c85585643a0f559e293b01c2c2122129a5a45352096423fe342f0e818ddd9746cd946248e5bf8469c2e3b3d00709232a5af58bfc722ca0f2d61817a005691cc

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEn0kL:BemTLkNdfE0pZrwZ

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • Kpot family

      kpot

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks