kinsing | 4540f0d89fce0b2a7a190c0e1b2c928a66cab46411b0903a2bc6798cf0acf901 | Triage

Sharing

General

Target

751d88e9f482e63c3eab72f5676034f3
Size

889KB
Sample

240125-v8dqksbhb5
MD5

751d88e9f482e63c3eab72f5676034f3
SHA1

c29225162d7271b0eb36aa388a741ffcd62dc417
SHA256

4540f0d89fce0b2a7a190c0e1b2c928a66cab46411b0903a2bc6798cf0acf901
SHA512

894306b9a102252f6e9e3d434283ccbc14b0f854b0fd19db9fa8e2f74542ea69cd3bf770b612593d3875c17edd4633f2901f463f9fd490d3e7b075bd6d877b2f
SSDEEP

24576:EmJjKZVTCfNUo4xULBEl5D+HqTLMUx5QGch0ntS71k7w3w:Euu0K9AqTLMUxShh0atw

Score

10^/10

kinsing loader

Malware Config

Targets

- Target
  
  751d88e9f482e63c3eab72f5676034f3
- Size
  
  889KB
- MD5
  
  751d88e9f482e63c3eab72f5676034f3
- SHA1
  
  c29225162d7271b0eb36aa388a741ffcd62dc417
- SHA256
  
  4540f0d89fce0b2a7a190c0e1b2c928a66cab46411b0903a2bc6798cf0acf901
- SHA512
  
  894306b9a102252f6e9e3d434283ccbc14b0f854b0fd19db9fa8e2f74542ea69cd3bf770b612593d3875c17edd4633f2901f463f9fd490d3e7b075bd6d877b2f
- SSDEEP
  
  24576:EmJjKZVTCfNUo4xULBEl5D+HqTLMUx5QGch0ntS71k7w3w:Euu0K9AqTLMUxShh0atw
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  15KB
- MD5
  
  67d8f4d5acdb722e9cb7a99570b3ded1
- SHA1
  
  f4a729ba77332325ea4dbdeea98b579f501fd26f
- SHA256
  
  fa8de036b1d9bb06be383a82041966c73473fc8382d041fb5c1758f991afeae7
- SHA512
  
  03999cc26a76b0de6f7e4e8a45137ee4d9c250366ac5a458110f00f7962158311eea5f22d3ee4f32f85aa6969eb143bdb8f03ca989568764ed2bc488c89b4b7f
- SSDEEP
  
  192:CsIZHdT9uwYX94kYd2iCzHR+yK7imphLAykycpKPd5m78ozxGUWumle:CsUHd9GN2d2iwl0impATIPdA78Ov6
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  959ea64598b9a3e494c00e8fa793be7e
- SHA1
  
  40f284a3b92c2f04b1038def79579d4b3d066ee0
- SHA256
  
  03cd57ab00236c753e7ddeee8ee1c10839ace7c426769982365531042e1f6f8b
- SHA512
  
  5e765e090f712beffce40c5264674f430b08719940d66e3a4d4a516fd4ade859f7853f614d9d6bbb602780de54e11110d66dbb0f9ca20ef6096ede531f9f6d64
- SSDEEP
  
  192:sRer7uivwq1XpKs4FVWSjMd8tIg2cREbyCsZ8q2R4Sy+Xe:s67Xws4FVWig86/5eCBqSy+Xe
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsSkinEngine.dll
- Size
  
  542KB
- MD5
  
  d2affa62684317933b3a1afccc19ce4d
- SHA1
  
  e7661cd1c84d341177210668a7e268f4d426cf78
- SHA256
  
  6cb3b447fd1cff285e4249deeeb2582f80260a22fab6f31899fe17165d401f7e
- SHA512
  
  6b93d68baecf5e7f233f73fddc0453e80f31932267c44ac402e9918c09c85133e5699b3975b6def8adf20ac366228874a3a9ddcd12a6c02e46f1528d23a44746
- SSDEEP
  
  6144:rclS2FiZXuC4DBEqV3juE11KUr6abef14CdlLUHGvs1NO7ehsg54vkiXOhZ:rcI2FQXTkBEq1KE7KUr68eOadcNYRvX
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral7 behavioral8
- Target
  
  BaiduP2PService.exe
- Size
  
  508KB
- MD5
  
  966a3d54b77168103b14f2988545c6a2
- SHA1
  
  ce9bb247ad9b990fa7b7ec820024396d05743aa3
- SHA256
  
  dcda0042275cc24569fd17dd4380e67901210dc2a178a5dc88f9315ca0587e1c
- SHA512
  
  eb005fc939032dde6959a62da4fc9bab3510412f254de993fd011718f5368d30b9c2e0b5761f59fedd32205ce4f5b4775a7b391a3f7b4c5a3e97f05c4a0c20a3
- SSDEEP
  
  12288:5Z/iRIQsofuKIm2GxM4yFpHlySax215j2zoTn:vqWQsofp2GDyPlyqTj2cTn
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
behavioral10 behavioral9
- Target
  
  BaiduPlayer.exe
- Size
  
  664KB
- MD5
  
  a1f27e0eeb2645ad4e42f63c8070a526
- SHA1
  
  b78e242e232ff9cf764aebde017132df1ace9319
- SHA256
  
  d8a287678517cfebea8655200206e04e50657a1c2dd1e46bc3a12bc96466e712
- SHA512
  
  9a9557f80884c3b7315f2e50162eca7ddb6444b9e5c8e72bc1f433a9d66e049f3b5f33ddf6b3af24ba435ed254e7a43412757edfa7e4f69e03b3fce5fdd4ce0f
- SSDEEP
  
  12288:q2e1ipjXjObHd3TDXdxEhV9vUZAGVnBPWYyaNRenMa8J3sH1uFl6IiW:1+4W5zvUZaveMaC3iPU
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12