Overview

overview

10

Static

static

3

74ef34f62a...a6.exe

windows7-x64

4

74ef34f62a...a6.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    88s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-01-2024 16:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    74ef34f62a06a20982925050d813f1a6.exe

  • Size

    15KB

  • MD5

    74ef34f62a06a20982925050d813f1a6

  • SHA1

    cd277e1884634bf3a0eaa119887b946f6287b07f

  • SHA256

    78071bdddae852423aaa6bfcf17b57e7654adbbf39df3f17cd46141fd283de07

  • SHA512

    0c3e31d9bcfacfeb223b2296e50976b518174557c65742b901d3df6597aad03fa3e3f6881221bd3a62e71ae8e68d0639263625a74059c246e94139bdccadc963

  • SSDEEP

    192:nNs61A/0LiQxqfKD6VkagfWhiQ7SMrZFl969d/z4CZceQjcWCD3kCF6:Cx0iQxqslQmi9m/5pAzCDUC

Score
10/10
kinsingloader

Malware Config

Signatures

  • Kinsing

    Kinsing is a loader written in Golang.

    loaderkinsing
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\74ef34f62a06a20982925050d813f1a6.exe
    "C:\Users\Admin\AppData\Local\Temp\74ef34f62a06a20982925050d813f1a6.exe"
    1⤵
    • Drops file in Windows directory
    PID:1672

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\System\expplorer.exe
    Filesize

    152KB

    MD5

    35037376f82991ab84a34441f8bfe6c6

    SHA1

    2da16ed518bc91c71f0dea7c3be5676f3b041cc1

    SHA256

    9784315fbac997c2ee47bfc507c527c5b7319e80ca48aaafc38ae5eed93f2c99

    SHA512

    565c60498f893a98b4e0f93e07d61253413bd5b897551e54cf41c26f58bfff5adcab49501ace82f0941585c50a14800d2530c92b766f81f51e8bdf7c7b419444

    Download Submit
  • memory/1672-11-0x0000000000400000-0x000000000040B000-memory.dmp
    Filesize

    44KB

    Download