One Article Review
| Source |  Contagio |
|---|---|
| Identifiant | 1664273 |
| Date de publication | 2020-04-19 12:10:37 (vue: 2020-04-19 17:01:00) |
| Titre | KPOT info stealer samples |
| Texte | KPOT Stealer is a “stealer” malware that focuses on stealing account information and other data from various software applications and servicesReferences 1. 2020-04-19 Didier Stevens posted analysis of KPOT infostealer on the Infosec Handlers Diary blog "KPOT Analysis: Obtaining the Decrypted KPOT EXE"These are samples to follow his analysis routine.2. 2019-05-09 Proofpoint. New KPOT v2.0 stealer brings zero persistence and in-memory features to silently steal credentialsDownload Other malware Download. Email me if you need the password (see in my profile) |
| Envoyé | Oui |
| Condensat | 2020 3fd4aa339bdfee23684ff495d884aa842165e61af85fd09411abfd64b97801462 56ad7b243511ee7398d43df7643dc904sha ae5ab7798ca267b1265a0496c562f219821d17cfsha http://contagio other 087fc3e9a082983ee6a2b25f0ccb09eb723e0f39sha 19 didier 2019 256 36dcd40aee6a42b8733ec3390501502824f570a23640c2c78a788805164f77cecontagio 45ddc687f88b45fc3fec79f9dc8b38e2sha 67f8302a2fd28d15f62d6d20d748bfe350334e5353cbdef112bd1f8231b5599dmd5 7d7667ddce8fd69a0fd50bb08c287d10sha account analysis analysis: applications are blog brings credentialsdownload data de37b748e0e32d96c31f469f9ba4ea4f11e3e78bsha decrypted deependresearch diary didier email exe features focuses follow from handlers his http://contagio info information infosec infostealer kpot malware malwaredownload memory need new obtaining org/crime/kpotstealer other password persistence post2 posted postmd5 profile proofpoint proofpointhashes1 proofpointmd5 routine samp samples see servicesreferences1 silently software steal stealer stealing stevens these various win zero zip zip zip from “stealer” |
| Tags | Malware |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.