kinsing | 126e5553fc40e4ecd36dbbedfbb39cced9b956b224122fe9df25f5d86081628f | Triage

Sharing

General

Target

74ff3f608e7fc220cc939070f1bca6bd
Size

320KB
Sample

240125-t7xavsbfhn
MD5

74ff3f608e7fc220cc939070f1bca6bd
SHA1

eba039dc499ba02641577be93b42ed38f9cfa552
SHA256

126e5553fc40e4ecd36dbbedfbb39cced9b956b224122fe9df25f5d86081628f
SHA512

f372441f60f01663e9cc51377a30acc4b1cbd88aa7e9babfcb9c0bc37163055c76a5991226cbd2a40704f8cd0e664fc51a78b2fb2ae3fd05d8a2fc8dbb6977a4
SSDEEP

6144:Uhi2CEx7BzUxW0pA+4ouO+5DiJUMMJyJi:UhtsW0L4ouuUMMJ+i

Score

10^/10

kinsing loader

Malware Config

Targets

- Target
  
  74ff3f608e7fc220cc939070f1bca6bd
- Size
  
  320KB
- MD5
  
  74ff3f608e7fc220cc939070f1bca6bd
- SHA1
  
  eba039dc499ba02641577be93b42ed38f9cfa552
- SHA256
  
  126e5553fc40e4ecd36dbbedfbb39cced9b956b224122fe9df25f5d86081628f
- SHA512
  
  f372441f60f01663e9cc51377a30acc4b1cbd88aa7e9babfcb9c0bc37163055c76a5991226cbd2a40704f8cd0e664fc51a78b2fb2ae3fd05d8a2fc8dbb6977a4
- SSDEEP
  
  6144:Uhi2CEx7BzUxW0pA+4ouO+5DiJUMMJyJi:UhtsW0L4ouuUMMJ+i
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  24KB
- MD5
  
  1fc1fbb2c7a14b7901fc9abbd6dbef10
- SHA1
  
  4d9ed86f31075a3d3f674ff78f39c190a4098126
- SHA256
  
  4f26394c93f1acb315c42c351983dafc7f094b2d05db6d7a1ba7dcb39a3a599e
- SHA512
  
  76d8ff7fc301cc5ff966ad8be17f0f3f2d869ef797c5a2c55a062305c02133a842906448741bf9818ec369bbb2932b9a9c2193ebc59835b50e8703db0090fdb2
- SSDEEP
  
  384:ya3Bj/GAqvdXP4P4IVlht8zNHxKNSJvor9e9dQTIHzOZwceyeZwd6TJdpq:yRtqLhtqKNS5sAvQTIB86T0
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  1128ee61dffa0a97d30b2f828235b289
- SHA1
  
  b552f3d4f13894f2f30fb446893093ca78fe149c
- SHA256
  
  1e33decac84bdd2b3a651c969258f8e6c90616e9ec35de6ab4f402709555ce4c
- SHA512
  
  d470356be436997fc53c17b8546cc80b187538ad2f258788761b92c28d91ef733fe6d8b3b33c353d84d1e0ae089207efd1ebfde33a6d33d5a341960e7bcfc8f5
- SSDEEP
  
  96:E7fhZwXd8KgEbAa9PweF1WxD8ZLMJGgmkN738:5N8KgWAuLWxD8ZAGgmkN
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsisdl.dll
- Size
  
  15KB
- MD5
  
  dd893b05df4fae0be652dfb188cd02d1
- SHA1
  
  a93eed746ad7c87e84e95594b928236eac4c6aed
- SHA256
  
  334697f5ae532cbd6274a17f2009d21acdece8e21735cb16cf2c09262be7cfa2
- SHA512
  
  baaa24e1deea742298ed4a361f70b568106fe462b71689b6394daa805ae898f246b4d417a176f66aec192ae0d64bafee555bb95388e02d3304b4a73a2f2f42f4
- SSDEEP
  
  384:Ahyd8Y6pu8ZaLf6Uksnw1g8BUcyHisULb:Ahyd8Y67WGg8B/Eib
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8