Overview

overview

7

Static

static

7

KinnFMS.exe

windows7-x64

1

KinnFMS.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-06-2023 18:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    KinnFMS.exe

  • Size

    2.0MB

  • MD5

    6c26d9bb63361601be7c893bedbd0c7b

  • SHA1

    309786fdd909b1e93b9363c71e81798cd56ea1ef

  • SHA256

    fe0d20b2db88c55aa42f20e2a44ccd2416700d6916c0adb2f7172623e64ade0a

  • SHA512

    7212efd5efdfb83c2be159277bf765d41d3784307737a5ac541a3948bf9df85dcb284327c13080b01d43ad23008b8f550b72b5304e034b6d0797678120ab3c81

  • SSDEEP

    49152:IAqZLZsMEIAvzfncHIjaUcgePHrXI+p2hgQoi3y5:Ib6vjncHIjSgePHz5eT3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\KinnFMS.exe
    "C:\Users\Admin\AppData\Local\Temp\KinnFMS.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\KinnFMS.INI
    Filesize

    23B

    MD5

    04604e1740b346a548b7ffcef8ab4acb

    SHA1

    f9e8b60d1ae00a2493596f76669ad4aa89b24d74

    SHA256

    d70a3ca1df05bb09fa0be85cadc634836c0334b069fbd0f7c817ed93eadd35b1

    SHA512

    7196c2bd43bad33f354f8ee1e26f94244a10776e521a665aa9f0288554edc911159331179efa71411adc23ce4fb64de961f3221917befa8aab85d7f46f61abf8

    Download Submit
  • memory/2244-133-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-134-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-135-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-136-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-137-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-138-0x0000000000EE0000-0x0000000000EE1000-memory.dmp
    Filesize

    4KB

    Download
  • memory/2244-271-0x0000000000400000-0x0000000000D0D000-memory.dmp
    Filesize

    9.1MB

    Download
  • memory/2244-272-0x0000000000EE0000-0x0000000000EE1000-memory.dmp
    Filesize

    4KB

    Download