Overview

overview

10

Static

static

10

2024-01-25...ye.exe

windows7-x64

9

2024-01-25...ye.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-25_89617b58056b84659001ffdef2bfff55_goldeneye

  • Size

    408KB

  • Sample

    240125-v4knbscfcn

  • MD5

    89617b58056b84659001ffdef2bfff55

  • SHA1

    8c2d868c7d39529144454b96225ec139dfa04ea5

  • SHA256

    c6fd2dbb502cc870835c35c6595b481359b0dea8b68aa123c08b8aa4997b4920

  • SHA512

    8a3aeecd1cc40e4790aabb86724d8421b3e51e8a37fd7b6aa2c67f8cf5f25df5640473d2eeb716711d29418c7f3340c712db0a28b4e2292708ba044ca5ea95c6

  • SSDEEP

    3072:CEGh0odl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGfldOe2MUVg3vTeKcAEciTBqr3jy

Score
10/10
kinsingloaderpersistence

Malware Config

Targets

    • Target

      2024-01-25_89617b58056b84659001ffdef2bfff55_goldeneye

    • Size

      408KB

    • MD5

      89617b58056b84659001ffdef2bfff55

    • SHA1

      8c2d868c7d39529144454b96225ec139dfa04ea5

    • SHA256

      c6fd2dbb502cc870835c35c6595b481359b0dea8b68aa123c08b8aa4997b4920

    • SHA512

      8a3aeecd1cc40e4790aabb86724d8421b3e51e8a37fd7b6aa2c67f8cf5f25df5640473d2eeb716711d29418c7f3340c712db0a28b4e2292708ba044ca5ea95c6

    • SSDEEP

      3072:CEGh0odl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGfldOe2MUVg3vTeKcAEciTBqr3jy

    Score
    10/10
    persistencekinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • Auto-generated rule

    • Modifies Installed Components in the registry

      persistence

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks