Analysis
-
max time kernel
130s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
25-01-2024 16:45
General
-
Target
base64.exe
-
Size
12KB
-
MD5
ea267f504df72ec8a870b8b56a8d132a
-
SHA1
33fedc421b1bfde017c393eab304c8e5b458757e
-
SHA256
75d3941a88a03f6dd0c03a25716a1b453ff28defbbb4cc991022244d7ea4162c
-
SHA512
e57e6cd481ad0c9a73133c814d9a7415e6f44816a3b21a7e77a1986c4c991dcbc89dc8738ec9f8e00b7bb86f5cfa6a4a5defbc32ad9224ae4fb81341d967584e
-
SSDEEP
384:z2JteEqAGGTqrGlNGXLqN43sw37eWcfdnI:z2J4WNG7qyLNv
Score
10/10
Malware Config
Signatures
-
Kinsing
Kinsing is a loader written in Golang.
Processes
-
C:\Users\Admin\AppData\Local\Temp\base64.exe"C:\Users\Admin\AppData\Local\Temp\base64.exe"1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/3504-0-0x0000000000440000-0x000000000044A000-memory.dmpFilesize
40KB
-
memory/3504-1-0x0000000075230000-0x00000000759E0000-memory.dmpFilesize
7.7MB
-
memory/3504-2-0x00000000054F0000-0x0000000005A94000-memory.dmpFilesize
5.6MB
-
memory/3504-3-0x0000000004E20000-0x0000000004EB2000-memory.dmpFilesize
584KB
-
memory/3504-4-0x0000000004FF0000-0x0000000005000000-memory.dmpFilesize
64KB
-
memory/3504-5-0x0000000004EE0000-0x0000000004EEA000-memory.dmpFilesize
40KB
-
memory/3504-6-0x0000000004FF0000-0x0000000005000000-memory.dmpFilesize
64KB
-
memory/3504-7-0x0000000075230000-0x00000000759E0000-memory.dmpFilesize
7.7MB
-
memory/3504-8-0x0000000004FF0000-0x0000000005000000-memory.dmpFilesize
64KB
-
memory/3504-9-0x0000000004FF0000-0x0000000005000000-memory.dmpFilesize
64KB