Overview

overview

10

Static

static

3

77d645d1dd...42.exe

windows7-x64

8

77d645d1dd...42.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-01-2024 16:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    77d645d1dd98648b6269cff06c775aa6c4f716c43d9f8459bebd213f6ed07742.exe

  • Size

    5.1MB

  • MD5

    a6007ba08ef6e1111ec68279f6fc2e78

  • SHA1

    fa74a68e63c56f9443344103b629a4387986fa90

  • SHA256

    77d645d1dd98648b6269cff06c775aa6c4f716c43d9f8459bebd213f6ed07742

  • SHA512

    0332a943de7bb0c014cc7fdda3304240dd313363e016af23b6637831beacd60771920d8ec51a46ab3746b8d210a174b1b9e017877e4f5541c2a4ae2d9350e9b8

  • SSDEEP

    98304:8HenYKGxUcl3nT86Ytacv5Se1KdzOJDb4v+u:8Hr/YtacvuwN0v+u

Score
10/10
kinsingloader

Malware Config

Signatures

  • Kinsing

    Kinsing is a loader written in Golang.

    loaderkinsing
  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\77d645d1dd98648b6269cff06c775aa6c4f716c43d9f8459bebd213f6ed07742.exe
    "C:\Users\Admin\AppData\Local\Temp\77d645d1dd98648b6269cff06c775aa6c4f716c43d9f8459bebd213f6ed07742.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    d16cb6ee8dc68b712b69ec4bd08c13bd

    SHA1

    1feab1a28c1b2c5f282d3cfc69982242c3369782

    SHA256

    cc5dedcdd4a7eb664ac87281edb8a9a34131c687234dc36bd696338a8949b8dc

    SHA512

    88a8bfffa11fcc5040229a5c65493f99047e4f5bec3a3bd45196df9e3502454a152ae314e8ad22df73b0c3492a54a816f766e039c5b7df8c83615f59532e22a2

    Download Submit
  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    7d2ddaaeaaf61f95185ec830e4c67bdc

    SHA1

    dec0b7b4214a51b161effe829e16d2e49b80369e

    SHA256

    f5ce232d8290b4940b5efedab7cd3b73b7c48bb7e0164630a3a1be8dc604a9b1

    SHA512

    3d88365509dc53f1a2a86dd5e550422641778f69d75c6b49b70305acda763c256f0da21c85fc06ffe691e1a5aad27d9d7d483fb1fc0b912e21ebbf0f698c7ab8

    Download Submit