kinsing | 44915f1a2530f1d37e4a9d074e8a8de216b272071b8f720bbad5357d9418118e | Triage

Submit
Reports

Overview

overview

Static

static

3

7501ab5980...e4.exe

windows7-x64

7

7501ab5980...e4.exe

windows10-2004-x64

Sharing

General

Target

7501ab598090fcbdcc4697ed6e8eace4
Size

40KB
Sample

240125-va21hsbggm
MD5

7501ab598090fcbdcc4697ed6e8eace4
SHA1

6f591cafa0d5e3d82d92a6b2aaa045d0a5c9c61d
SHA256

44915f1a2530f1d37e4a9d074e8a8de216b272071b8f720bbad5357d9418118e
SHA512

ed9d426018abfb629a14c3255bcc4f217bd678fad4ddbfe5a3c6df09b246eece48156c02ff1da092bd0d0b287cd87c59143ac77b070ed47f6ce08dd25f7fff4b
SSDEEP

768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtH5RP:aqk/Zdic/qjh8w19JDHXP

Score

10^/10

kinsing loader persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7501ab598090fcbdcc4697ed6e8eace4.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

7501ab598090fcbdcc4697ed6e8eace4.exe

Resource

win10v2004-20231215-en

kinsing loader persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7501ab598090fcbdcc4697ed6e8eace4
- Size
  
  40KB
- MD5
  
  7501ab598090fcbdcc4697ed6e8eace4
- SHA1
  
  6f591cafa0d5e3d82d92a6b2aaa045d0a5c9c61d
- SHA256
  
  44915f1a2530f1d37e4a9d074e8a8de216b272071b8f720bbad5357d9418118e
- SHA512
  
  ed9d426018abfb629a14c3255bcc4f217bd678fad4ddbfe5a3c6df09b246eece48156c02ff1da092bd0d0b287cd87c59143ac77b070ed47f6ce08dd25f7fff4b
- SSDEEP
  
  768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtH5RP:aqk/Zdic/qjh8w19JDHXP
Score

10^/10

persistence upx kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

kinsingloaderpersistenceupx

© 2018-2024

Terms | Privacy