kinsing | 13efd3b306c1eb79178dacc941f993924715ad758bf6ebab510a374cdae48538 | Triage

Submit
Reports

Overview

overview

Static

static

7

7501768111...bd.exe

windows7-x64

7

7501768111...bd.exe

windows10-2004-x64

Sharing

General

Target

750176811194b64ecae36c237bba7fbd
Size

588KB
Sample

240125-vapeesbggj
MD5

750176811194b64ecae36c237bba7fbd
SHA1

0dcf07d37e2d6e2bec181f9ff3a8d97ffad4213f
SHA256

13efd3b306c1eb79178dacc941f993924715ad758bf6ebab510a374cdae48538
SHA512

ecf714b7c29952b47252477bb614724f64d9adb57c28815133a3432d311d8e67516d4eb028b9e0ca8de140a8dd4a0e25493e6dd692eeec5df4a522a65fd55221
SSDEEP

12288:t7ysfPd+GL3y9NpOPPRKiOu8yHMY6CYmvK4O8pKoElzpFGu5vOe:Ys3d+GLC9zOBKJiHMY2mxOCKo0zp4u55

Score

10^/10

kinsing loader spyware stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

750176811194b64ecae36c237bba7fbd.exe

Resource

win7-20231215-en

spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

750176811194b64ecae36c237bba7fbd.exe

Resource

win10v2004-20231215-en

kinsing loader spyware stealer upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  750176811194b64ecae36c237bba7fbd
- Size
  
  588KB
- MD5
  
  750176811194b64ecae36c237bba7fbd
- SHA1
  
  0dcf07d37e2d6e2bec181f9ff3a8d97ffad4213f
- SHA256
  
  13efd3b306c1eb79178dacc941f993924715ad758bf6ebab510a374cdae48538
- SHA512
  
  ecf714b7c29952b47252477bb614724f64d9adb57c28815133a3432d311d8e67516d4eb028b9e0ca8de140a8dd4a0e25493e6dd692eeec5df4a522a65fd55221
- SSDEEP
  
  12288:t7ysfPd+GL3y9NpOPPRKiOu8yHMY6CYmvK4O8pKoElzpFGu5vOe:Ys3d+GLC9zOBKJiHMY2mxOCKo0zp4u55
Score

10^/10

spyware stealer upx kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

kinsingloaderspywarestealerupx

© 2018-2024

Terms | Privacy