kinsing | 20db3eae848628ebfd15f57957f4efc621d274590eca7675b1ce5cd93867df25 | Triage

Sharing

General

Target

74f79287cf784cae6bc1642833a03121
Size

220KB
Sample

240125-tx7c3safb9
MD5

74f79287cf784cae6bc1642833a03121
SHA1

ba9316d8e9ac3cc62847d161627b8314809ded02
SHA256

20db3eae848628ebfd15f57957f4efc621d274590eca7675b1ce5cd93867df25
SHA512

f945b6047dfbdf1f37b093d5c2f4f715cde1df54b708cb9c2c7038f6e144b72de6342e46d119944ee8aa5fd45573422b6db3b061896534d246d6f3d7e34f09ff
SSDEEP

3072:Kt3kUBtKPiWa70Z6ggcODEfKAwnYb9H85GqXuXDsEoanMRYRo:yBBsWYZj9bF85GqXuXDdoEMRYa

Score

10^/10

kinsing discovery loader

Malware Config

Targets

- Target
  
  74f79287cf784cae6bc1642833a03121
- Size
  
  220KB
- MD5
  
  74f79287cf784cae6bc1642833a03121
- SHA1
  
  ba9316d8e9ac3cc62847d161627b8314809ded02
- SHA256
  
  20db3eae848628ebfd15f57957f4efc621d274590eca7675b1ce5cd93867df25
- SHA512
  
  f945b6047dfbdf1f37b093d5c2f4f715cde1df54b708cb9c2c7038f6e144b72de6342e46d119944ee8aa5fd45573422b6db3b061896534d246d6f3d7e34f09ff
- SSDEEP
  
  3072:Kt3kUBtKPiWa70Z6ggcODEfKAwnYb9H85GqXuXDsEoanMRYRo:yBBsWYZj9bF85GqXuXDdoEMRYa
Score

10^/10

discovery kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2