kinsing | e161926dbde52476ecadf490e4d2f8292c28bab433f6d1bc427ae13589eed769 | Triage

Sharing

General

Target

74ec3e31d593fdc5f2ad2095b12e5a85
Size

646KB
Sample

240125-tgzy3abbcj
MD5

74ec3e31d593fdc5f2ad2095b12e5a85
SHA1

d8fec5ce04254bd7415a020b20bd33ba4b4b5de3
SHA256

e161926dbde52476ecadf490e4d2f8292c28bab433f6d1bc427ae13589eed769
SHA512

0164ffba601c4f53c648acc0a75ff52253af8bcc80ebe900ca35a0f5250d1fe2e2de2c1e3a6efc4ae84062591971eab36d1659d972fd3cc790f24c7b2090e337
SSDEEP

12288:fpmK+y73pw87hJk22Z1FouLAfwnMaUBPCUmpWvOxhBlcfP6fpWSEb+pb:0K+ATfZInMHB6d5Bl0yfOSl

Score

10^/10

kinsing loader

Malware Config

Targets

- Target
  
  74ec3e31d593fdc5f2ad2095b12e5a85
- Size
  
  646KB
- MD5
  
  74ec3e31d593fdc5f2ad2095b12e5a85
- SHA1
  
  d8fec5ce04254bd7415a020b20bd33ba4b4b5de3
- SHA256
  
  e161926dbde52476ecadf490e4d2f8292c28bab433f6d1bc427ae13589eed769
- SHA512
  
  0164ffba601c4f53c648acc0a75ff52253af8bcc80ebe900ca35a0f5250d1fe2e2de2c1e3a6efc4ae84062591971eab36d1659d972fd3cc790f24c7b2090e337
- SSDEEP
  
  12288:fpmK+y73pw87hJk22Z1FouLAfwnMaUBPCUmpWvOxhBlcfP6fpWSEb+pb:0K+ATfZInMHB6d5Bl0yfOSl
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Components.html
- Size
  
  3KB
- MD5
  
  09129279318e4b369ab2735238c096a8
- SHA1
  
  650e5805ba4f4f57df7316ae86adc96aa639730d
- SHA256
  
  c4a462d888994922c132fdd69854db07f34a43fb685a9c527ad5ab57462e08df
- SHA512
  
  bbfd5880bc41fafa3de9dc800f9417f6ccfc61842e706bb10e92314bec34e172d51cf1f54475912e5e2dd1b08dc0bffca9a519fdee0959b9e25f523d47c29172
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/Confirmation.html
- Size
  
  2KB
- MD5
  
  fb242ca8761f6537ef7f27832320f0db
- SHA1
  
  b64089afcfa9d204b68dffeff763106dc39856fe
- SHA256
  
  848b5e85010342a8f020cfb4f84c22ed7c28379742380c2b269bad3429ee5bef
- SHA512
  
  aa45516e083d0499ae721d6a2224803da4f7c773106f6812d839f88a2739856074fb3eb00f255e8a3bb7b7ab503978c4ec2b6171b476a153804bc965e1f45d8f
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/Final.html
- Size
  
  2KB
- MD5
  
  c81dc2218a6223483ceb7865047c081c
- SHA1
  
  a64bf1af78cbee2e69053e90de4430ab36cb807d
- SHA256
  
  e36700ae566109c416b4cffb30626fcfd25566cbd28b1302ac9a3b336ce8223b
- SHA512
  
  b7f4725687ebdc7910113f0c72d4603912b77d9c6390122997d7d3f9e6a7d683d75f22498f7bafa1ecc080a369c3958aa1ca9b54a1195c069947e11e1bb19d1e
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/InetLoadEx.dll
- Size
  
  55KB
- MD5
  
  9fae574b1004bb0650eebba3d8040c59
- SHA1
  
  541583ec14af05915b8efefe520edd4f25914c9a
- SHA256
  
  73f4a1529acf2ea56d4db9ed8134bed0498cea38903105f7c2af8cc7d11b8db3
- SHA512
  
  ab25c429301f2d8a2da6b7c2a222c4028ad8e393c67dde83606762a8ba49c6c49460538624a799969dd0b3c810623d7e471c65a390e8661228a621580d7d54c7
- SSDEEP
  
  768:WFKaQrcF+ntygjX/+qEg469TRphsguCtPQpcQaa5jZ19K:WIaQrs0kgjx9TRsg1ox5H
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/Processes.dll
- Size
  
  35KB
- MD5
  
  2cfba79d485cf441c646dd40d82490fc
- SHA1
  
  83e51ac1115a50986ed456bd18729653018b9619
- SHA256
  
  86b302fa9c85dfa0c1c03ba000864a928365dab571f3355347dba02da22949b7
- SHA512
  
  cca186a7f9c5cff3f4eca410fbe8cc13dad2514a7e36aec9b1addfbcb239ace9b9b2d8427771858e3fd11783abce7e24d43c286f98da9f8b17562ca095a4c043
- SSDEEP
  
  768:uxEiycFoaj/+WSiJfmjvab7L/cUf7IIlMLRF:uxEm7sgfmjy//cgdlM/
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/Progress.dll
- Size
  
  80KB
- MD5
  
  15e01578481287bbcf32d2217f1b5246
- SHA1
  
  67a7d05bb2f8b33980867d3352280fa0cd0b4e9f
- SHA256
  
  61d8f9eba68cc6e2a83ec6d1689b2aa45e06bc32e13cdfcec8b593a14bc8bf70
- SHA512
  
  9a83832faf20eaef5043f69d468bfe032d790274df25bae73bce4f7830ac83587d7e23dba531bff04951cbed67399386d9ea4337002a99d8cf61de3f8e33b674
- SSDEEP
  
  768:WCFSITRx/imU5IBAczjPj+NbHHFJUzWwrhABjknWgiLLhfv09jaYhdb5P8mDnbK:+8xzUKBZo0zWWhskjiLwR/5P3b
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/Register.html
- Size
  
  7KB
- MD5
  
  fcc71173692f9de5cfc2ad6f6911981d
- SHA1
  
  bddd4d747b3ef2882d109a191aaf356bf2ba7138
- SHA256
  
  750df04ae8e5fc95af63fe3b723e14478a8545a58fcbb7d2035b4b94d05e2723
- SHA512
  
  30424f8293c4c646274e09bb54cb4c112963142bb4f23a682e05cb90bf8e6236bb1390e2e64368a78270ff579f66b70fe3c66745c10922abd96c022a2e29bce9
- SSDEEP
  
  96:z5XMe2Qxe2Ql6G3GHfROI+CzF3ks39DeWat4KOY6H8LSSeTuddddXuAnbVXoV66m:zCKQucQksN6sK2rSeWnmgA8T
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/blowfish.dll
- Size
  
  60KB
- MD5
  
  926e4475c00fb5254c32c876921b77d0
- SHA1
  
  8a55bc8b6e49021a4abbd441783c41d5e019798b
- SHA256
  
  d54c8582863c079996c4f1113b1c106204773ad9ea2ae831ba2b33b45bafdfa8
- SHA512
  
  53f389e1a967c123ed591c7650cf6d3140abf1012dcac90faf2327e68558949eb2b19905098bd14ab3a9811d23f98466f88418d992ca6373f94afae56a285bd8
- SSDEEP
  
  768:iqdVHQr1iIxqXiURXB+tzjjrrzhzlRryN+SaYhba3mrf+C7jWk1MLfoMR38:iawr1iIIXYplRrOk4f7HML1R3
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/nswebgui.dll
- Size
  
  167KB
- MD5
  
  1d757e2754886e20355caeb081a66dc4
- SHA1
  
  aa12ed48f0197a12092148b0fb2e5d352c7af7d1
- SHA256
  
  020c79bbd7818244168196a67c583f6284459989423cb68ea4ef69e73b59da67
- SHA512
  
  3d2dbdf39a86c24330e4f06608e272ff33026df8ca1fc5d4c956af98612394d6114fb537c820751591393c5190bccb70f56f94f6a18e685f55c26e7c483c1565
- SSDEEP
  
  3072:14nlnuxCg0q/l8Ihrq0guUwnsBotNnZgNOVoeOuRj/lrJ53eLx:1iMN1gnwnsBGN2y1hz
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22