kinsing | 33a63c3741249ceef766b5ecc24b38dcac5dddfb6f5c0bbb926ec17e4bf4b27d | Triage

Sharing

General

Target

750a6097894901e8d029e3700696ffa8
Size

346KB
Sample

240125-vks6cscbal
MD5

750a6097894901e8d029e3700696ffa8
SHA1

62ef49e5d44b8fd1967c9bd08dcae810f3b5bec9
SHA256

33a63c3741249ceef766b5ecc24b38dcac5dddfb6f5c0bbb926ec17e4bf4b27d
SHA512

219fb5566f5efa6454428c6f1b2a5efb659ceac81eac5ee424085e8a3b1cccad5eb6ec3b810c1375786d123822e1af1a913d1b5beaf7ab7fc5dcb6a6b135af29
SSDEEP

6144:JtpRfJRna8RP4IwC1RAG/sFxEH8/yHlLd4pyBf5xY/KBTA/W:J7RfZRPlwCIGkFxwdxFBTA

Score

10^/10

kinsing adware loader stealer

Malware Config

Targets

- Target
  
  750a6097894901e8d029e3700696ffa8
- Size
  
  346KB
- MD5
  
  750a6097894901e8d029e3700696ffa8
- SHA1
  
  62ef49e5d44b8fd1967c9bd08dcae810f3b5bec9
- SHA256
  
  33a63c3741249ceef766b5ecc24b38dcac5dddfb6f5c0bbb926ec17e4bf4b27d
- SHA512
  
  219fb5566f5efa6454428c6f1b2a5efb659ceac81eac5ee424085e8a3b1cccad5eb6ec3b810c1375786d123822e1af1a913d1b5beaf7ab7fc5dcb6a6b135af29
- SSDEEP
  
  6144:JtpRfJRna8RP4IwC1RAG/sFxEH8/yHlLd4pyBf5xY/KBTA/W:J7RfZRPlwCIGkFxwdxFBTA
Score

10^/10

adware stealer kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

kinsingadwareloaderstealer