Analysis Overview
SHA256
e6ce5fa66c21de14fd2555c4a15f92a815d6db6863e725973c3a7517022af15d
Threat Level: Known bad
The file 751af8c4926ef8c00089a9768c333c5c was found to be: Known bad.
Malicious Activity Summary
Kinsing
Enumerates physical storage devices
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-01-25 17:33
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-01-25 17:33
Reported
2024-01-25 17:36
Platform
win7-20231215-en
Max time kernel
118s
Max time network
121s
Command Line
Signatures
Enumerates physical storage devices
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\751af8c4926ef8c00089a9768c333c5c.lnk
Network
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-01-25 17:33
Reported
2024-01-25 17:36
Platform
win10v2004-20231222-en
Max time kernel
140s
Max time network
149s
Command Line
Signatures
Kinsing
Enumerates physical storage devices
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\751af8c4926ef8c00089a9768c333c5c.lnk
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 28.118.140.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.178.17.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.71.91.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |