kinsing | 4cbc2c416df672708e603af8fc3711cc152f2d422f33dc52b325c0ec767bebda | Triage

Sharing

General

Target

751edc9267ac622a8d2eabefc2771e24
Size

1.1MB
Sample

240125-v9kwaabhd9
MD5

751edc9267ac622a8d2eabefc2771e24
SHA1

9c54c040c0b6f72556bb2ce498446f9577bd98a5
SHA256

4cbc2c416df672708e603af8fc3711cc152f2d422f33dc52b325c0ec767bebda
SHA512

4ae0e5a07441c9a1a7b8656640fefe5cc0b5e9cf2c2f1042da872c6d341f6470c6151e56f19d72a06ee388267ee23fc17b61a1a5e37a1b3ee61ceb1e7a504dc1
SSDEEP

24576:JCjlx/TUTO68pQzmI0semQJhM0BETQQ18gTUQ6sFqC:OlxkH8pGmCemo20BETX

Score

10^/10

kinsing loader spyware stealer

Malware Config

Targets

- Target
  
  751edc9267ac622a8d2eabefc2771e24
- Size
  
  1.1MB
- MD5
  
  751edc9267ac622a8d2eabefc2771e24
- SHA1
  
  9c54c040c0b6f72556bb2ce498446f9577bd98a5
- SHA256
  
  4cbc2c416df672708e603af8fc3711cc152f2d422f33dc52b325c0ec767bebda
- SHA512
  
  4ae0e5a07441c9a1a7b8656640fefe5cc0b5e9cf2c2f1042da872c6d341f6470c6151e56f19d72a06ee388267ee23fc17b61a1a5e37a1b3ee61ceb1e7a504dc1
- SSDEEP
  
  24576:JCjlx/TUTO68pQzmI0semQJhM0BETQQ18gTUQ6sFqC:OlxkH8pGmCemo20BETX
Score

10^/10

spyware stealer kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

kinsingloaderspywarestealer