Overview

overview

10

Static

static

7

75098fcc2a...fd.exe

windows7-x64

7

75098fcc2a...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    75098fcc2a67552f7b460586397e28fd

  • Size

    80KB

  • Sample

    240125-vjrk5scafn

  • MD5

    75098fcc2a67552f7b460586397e28fd

  • SHA1

    f27e20f7e8031bdfa825642c9ce2f0f1a8ab2a21

  • SHA256

    7f295a18bd5eca0a4584f31fdf3d567bdfa80f6602dd5819d331f349bf4ba150

  • SHA512

    da2021ed4a5a7927278df1f5e1e3413fbf15babcc55d4840bb6200d4c73cf8897621e9aee06e6db54095015902e21c86ba36923eb335b89ed7a613acf72a2e97

  • SSDEEP

    1536:+zWsWHRwXZGZjq+UCh7YEPs6+tVZuvicmEY5:+zyHR6GZjqUhnk5iiWY5

Score
10/10
kinsingloaderpersistenceupx

Malware Config

Targets

    • Target

      75098fcc2a67552f7b460586397e28fd

    • Size

      80KB

    • MD5

      75098fcc2a67552f7b460586397e28fd

    • SHA1

      f27e20f7e8031bdfa825642c9ce2f0f1a8ab2a21

    • SHA256

      7f295a18bd5eca0a4584f31fdf3d567bdfa80f6602dd5819d331f349bf4ba150

    • SHA512

      da2021ed4a5a7927278df1f5e1e3413fbf15babcc55d4840bb6200d4c73cf8897621e9aee06e6db54095015902e21c86ba36923eb335b89ed7a613acf72a2e97

    • SSDEEP

      1536:+zWsWHRwXZGZjq+UCh7YEPs6+tVZuvicmEY5:+zyHR6GZjqUhnk5iiWY5

    Score
    10/10
    persistenceupxkinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks