kinsing | 14acefa72d83dcd433357ddd2457d3d9b27aaaca78553dfe46aeb0da2b29e336 | Triage

Sharing

General

Target

74ee13f7ec4865bf8b36e9a27bce7228
Size

385KB
Sample

240125-tjnc2sace9
MD5

74ee13f7ec4865bf8b36e9a27bce7228
SHA1

4792ddfb9f9f74b5d352e4d609af096d2fd02ec8
SHA256

14acefa72d83dcd433357ddd2457d3d9b27aaaca78553dfe46aeb0da2b29e336
SHA512

d35ec830bf7cef2bc346556d7f7f89b5694d2722951bda94b715355642070d986100589c12e16800d8c0d9c02eb0d3a60a8bdca787d6d913246471158c221d1c
SSDEEP

12288:jde79813dOjMP1xPujLWScJQ+ZXKU3V5p0aoYB:j951V7SwQ+J3TwYB

Score

10^/10

kinsing loader

Malware Config

Targets

- Target
  
  74ee13f7ec4865bf8b36e9a27bce7228
- Size
  
  385KB
- MD5
  
  74ee13f7ec4865bf8b36e9a27bce7228
- SHA1
  
  4792ddfb9f9f74b5d352e4d609af096d2fd02ec8
- SHA256
  
  14acefa72d83dcd433357ddd2457d3d9b27aaaca78553dfe46aeb0da2b29e336
- SHA512
  
  d35ec830bf7cef2bc346556d7f7f89b5694d2722951bda94b715355642070d986100589c12e16800d8c0d9c02eb0d3a60a8bdca787d6d913246471158c221d1c
- SSDEEP
  
  12288:jde79813dOjMP1xPujLWScJQ+ZXKU3V5p0aoYB:j951V7SwQ+J3TwYB
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Deletes itself
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2