Overview

overview

10

Static

static

3

750e76b3fa...14.exe

windows7-x64

7

750e76b3fa...14.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    750e76b3fa39aa4ee49d9aceaf8aa614

  • Size

    693KB

  • Sample

    240125-vp4gwsccbl

  • MD5

    750e76b3fa39aa4ee49d9aceaf8aa614

  • SHA1

    cb8a63fa126d80934e687baefde7b9e9575a554d

  • SHA256

    6556e13bc328ea2d5f7e123e7b313d1d828dd23ea4aabe9556ac316386d6dc87

  • SHA512

    5102c4a4f9da5b43a7fda12f08e7c0e876af9c97862687fa08b2c073d0050f132378a363a18b153f9bd63e23a188bd1664249944e33ac5fa50e1e25f72946c54

  • SSDEEP

    12288:rjWRs5UK52isETnq6LvniKHVGjRo52vig3y5gCRf2TiBqgwarQTsOgQgQ8Gms37:rj5fWH6LvPVEq27y5gCYiBMFYGmss

Score
10/10
kinsingaspackv2loader

Malware Config

Targets

    • Target

      750e76b3fa39aa4ee49d9aceaf8aa614

    • Size

      693KB

    • MD5

      750e76b3fa39aa4ee49d9aceaf8aa614

    • SHA1

      cb8a63fa126d80934e687baefde7b9e9575a554d

    • SHA256

      6556e13bc328ea2d5f7e123e7b313d1d828dd23ea4aabe9556ac316386d6dc87

    • SHA512

      5102c4a4f9da5b43a7fda12f08e7c0e876af9c97862687fa08b2c073d0050f132378a363a18b153f9bd63e23a188bd1664249944e33ac5fa50e1e25f72946c54

    • SSDEEP

      12288:rjWRs5UK52isETnq6LvniKHVGjRo52vig3y5gCRf2TiBqgwarQTsOgQgQ8Gms37:rj5fWH6LvPVEq27y5gCYiBMFYGmss

    Score
    10/10
    aspackv2kinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks