Analysis
-
max time kernel
135s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
25-01-2024 16:01
General
-
Target
74eb5cc3681d8e08d4afbe092a2bd4f9.exe
-
Size
223KB
-
MD5
74eb5cc3681d8e08d4afbe092a2bd4f9
-
SHA1
28edc4009972cbb4f988ea98787fae328e496225
-
SHA256
14eb266ab7200c1717e958153120d67a1111e573f80f52809157bb291fed40a6
-
SHA512
b42a637bd9dcbf8f2a17c854c97c2471b2f88ab30fff606b02dd7c1153fee407b5e9f58903c82c6ba9afb08aeb4636b6afd09a9315a0f50879c2f35c18b4d747
-
SSDEEP
3072:+H4KWlzjZkAsU6iOTQdzktLyQWSzwbDu8dSaH/1:+HSlPLs6tzkLgbDu8caH9
Score
10/10
Malware Config
Signatures
-
Kinsing
Kinsing is a loader written in Golang.
-
Drops file in Windows directory 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\74eb5cc3681d8e08d4afbe092a2bd4f9.exe"C:\Users\Admin\AppData\Local\Temp\74eb5cc3681d8e08d4afbe092a2bd4f9.exe"1⤵
- Drops file in Windows directory
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/4820-0-0x00000000008A0000-0x00000000008A1000-memory.dmpFilesize
4KB
-
memory/4820-4-0x0000000000910000-0x0000000000911000-memory.dmpFilesize
4KB
-
memory/4820-3-0x0000000000920000-0x0000000000921000-memory.dmpFilesize
4KB
-
memory/4820-2-0x0000000000900000-0x0000000000901000-memory.dmpFilesize
4KB
-
memory/4820-1-0x00000000008F0000-0x00000000008F1000-memory.dmpFilesize
4KB
-
memory/4820-5-0x0000000000930000-0x0000000000950000-memory.dmpFilesize
128KB
-
memory/4820-6-0x0000000001030000-0x000000000105F000-memory.dmpFilesize
188KB
-
memory/4820-10-0x0000000000930000-0x0000000000950000-memory.dmpFilesize
128KB
-
memory/4820-18-0x0000000000930000-0x0000000000950000-memory.dmpFilesize
128KB