Overview

overview

10

Static

static

3

c32a10cccc...ee.exe

windows7-x64

7

c32a10cccc...ee.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c32a10cccc846fca45ae6711cf8845c11d0785ad7306b55cb837f335b23869ee

  • Size

    816KB

  • Sample

    240125-s3hfgahhc5

  • MD5

    0950c8f577424fd78fae4996959a82ef

  • SHA1

    5a5ac016071f4bc1f483600231949403322a8edd

  • SHA256

    c32a10cccc846fca45ae6711cf8845c11d0785ad7306b55cb837f335b23869ee

  • SHA512

    c3cf3453605f825d5ea952240ef6f45d4ef22e09d100308c1ad0be57fc5dc5722e4a64e1b8a9be4816d49654cdadcae372cdcb4fe3f61bdafd24d4b84ea2cd4e

  • SSDEEP

    24576:cnO5p0vVuXp5SF+5JwXgb1081v3iYYKLJxNk:tD0vVG+F+bmgb1+cxC

Score
10/10
kinsingloaderspywarestealer

Malware Config

Targets

    • Target

      c32a10cccc846fca45ae6711cf8845c11d0785ad7306b55cb837f335b23869ee

    • Size

      816KB

    • MD5

      0950c8f577424fd78fae4996959a82ef

    • SHA1

      5a5ac016071f4bc1f483600231949403322a8edd

    • SHA256

      c32a10cccc846fca45ae6711cf8845c11d0785ad7306b55cb837f335b23869ee

    • SHA512

      c3cf3453605f825d5ea952240ef6f45d4ef22e09d100308c1ad0be57fc5dc5722e4a64e1b8a9be4816d49654cdadcae372cdcb4fe3f61bdafd24d4b84ea2cd4e

    • SSDEEP

      24576:cnO5p0vVuXp5SF+5JwXgb1081v3iYYKLJxNk:tD0vVG+F+bmgb1+cxC

    Score
    10/10
    spywarestealerkinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks