Overview

overview

10

Static

static

3

2024-01-25...ia.exe

windows7-x64

7

2024-01-25...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-25_5a200367c89d61ee380e45a7abb4fedf_mafia

  • Size

    465KB

  • Sample

    240125-v2l4dabff7

  • MD5

    5a200367c89d61ee380e45a7abb4fedf

  • SHA1

    c2d1f1fa0dcdbf2b267b9e6bf98ac832b2be1030

  • SHA256

    63b7f0f294538eb58065b991c6cba99e6960d2a2612608d4726f911f330aee8f

  • SHA512

    70dc7c2ffe16db90fb3a3c23687e777c363e60f3cf78a4d4260297be45b04ec7a91eef871a503fd7af5e37529d33c0641de26535923ef5c812670ec329a6d1e1

  • SSDEEP

    6144:jFrJxvldL4c5ONK1xgWbd1s79+iStKE+PchmmBQGP72PVqLdIQ2uYgf6o1w9/jIi:Bb4bZudi79L1dPcraWSVqt3dB1YjQA

Score
10/10
kinsingloader

Malware Config

Targets

    • Target

      2024-01-25_5a200367c89d61ee380e45a7abb4fedf_mafia

    • Size

      465KB

    • MD5

      5a200367c89d61ee380e45a7abb4fedf

    • SHA1

      c2d1f1fa0dcdbf2b267b9e6bf98ac832b2be1030

    • SHA256

      63b7f0f294538eb58065b991c6cba99e6960d2a2612608d4726f911f330aee8f

    • SHA512

      70dc7c2ffe16db90fb3a3c23687e777c363e60f3cf78a4d4260297be45b04ec7a91eef871a503fd7af5e37529d33c0641de26535923ef5c812670ec329a6d1e1

    • SSDEEP

      6144:jFrJxvldL4c5ONK1xgWbd1s79+iStKE+PchmmBQGP72PVqLdIQ2uYgf6o1w9/jIi:Bb4bZudi79L1dPcraWSVqt3dB1YjQA

    Score
    10/10
    kinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks