kinsing | 7e14ec9a81ce1f41c93c4b3d4061fb0728a77d29eab58bbc90735bd22523dbf8 | Triage

Sharing

General

Target

74f20efea1e25faed274eddce32e9ca9
Size

562KB
Sample

240125-tp164aadf9
MD5

74f20efea1e25faed274eddce32e9ca9
SHA1

8a03e91d2b1da52cff9579549d79cf8d5813d1c5
SHA256

7e14ec9a81ce1f41c93c4b3d4061fb0728a77d29eab58bbc90735bd22523dbf8
SHA512

12055f345a133a9244a6387b8f1b50bc1f5ea61a3faaf6232e3dbfc69bd537283aa30fc4845c6e514a70f181093e01a5b72f08c8e9bf16c565c2390d3985132f
SSDEEP

12288:+0Et9YDc/Tk4Po4wSSqodPF9C2vTgYnYFaTbRp:utWDcw4o4Ts/9CknsanR

Score

10^/10

kinsing adware loader stealer

Malware Config

Targets

- Target
  
  74f20efea1e25faed274eddce32e9ca9
- Size
  
  562KB
- MD5
  
  74f20efea1e25faed274eddce32e9ca9
- SHA1
  
  8a03e91d2b1da52cff9579549d79cf8d5813d1c5
- SHA256
  
  7e14ec9a81ce1f41c93c4b3d4061fb0728a77d29eab58bbc90735bd22523dbf8
- SHA512
  
  12055f345a133a9244a6387b8f1b50bc1f5ea61a3faaf6232e3dbfc69bd537283aa30fc4845c6e514a70f181093e01a5b72f08c8e9bf16c565c2390d3985132f
- SSDEEP
  
  12288:+0Et9YDc/Tk4Po4wSSqodPF9C2vTgYnYFaTbRp:utWDcw4o4Ts/9CknsanR
Score

10^/10

adware stealer kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

kinsingadwareloaderstealer