kinsing | 7cb2efd720632414d98b39f3250f1b37f57eee6fbcea6f14191368dc15309863 | Triage

Sharing

General

Target

74f0c1570fdb59bb20b2d3c60f41584f
Size

174KB
Sample

240125-tnb6ksbccp
MD5

74f0c1570fdb59bb20b2d3c60f41584f
SHA1

a378e42b7e08a800f9db364dea2ab9be6bf745c8
SHA256

7cb2efd720632414d98b39f3250f1b37f57eee6fbcea6f14191368dc15309863
SHA512

35cf28010db0ee05ff5609e2099ae2b00e2b66c560b6ab8c70cd5b9bdf96c050fa84a465570653e646a7a72d1eb0ee597a931539bb7ff5b23286ff3b2ab28d99
SSDEEP

3072:unOn7t7XpdpCCTg/sxFgJDZyCUncls+N/0LtG9eMYlvkRr/VOrhrpv1at:uKpdcCrTqJUQsMV9enkq1pv4

Score

10^/10

kinsing loader

Malware Config

Targets

- Target
  
  74f0c1570fdb59bb20b2d3c60f41584f
- Size
  
  174KB
- MD5
  
  74f0c1570fdb59bb20b2d3c60f41584f
- SHA1
  
  a378e42b7e08a800f9db364dea2ab9be6bf745c8
- SHA256
  
  7cb2efd720632414d98b39f3250f1b37f57eee6fbcea6f14191368dc15309863
- SHA512
  
  35cf28010db0ee05ff5609e2099ae2b00e2b66c560b6ab8c70cd5b9bdf96c050fa84a465570653e646a7a72d1eb0ee597a931539bb7ff5b23286ff3b2ab28d99
- SSDEEP
  
  3072:unOn7t7XpdpCCTg/sxFgJDZyCUncls+N/0LtG9eMYlvkRr/VOrhrpv1at:uKpdcCrTqJUQsMV9enkq1pv4
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2