kinsing | bf5f7e0398d78184a6efa2368b9faad3a45b5fa69767d36f02dd9ab7d5c419ce | Triage

Submit
Reports

Overview

overview

Static

static

1

DHL-LHER00...3.docx

windows7-x64

7

DHL-LHER00...3.docx

windows10-2004-x64

Sharing

General

Target

DHL-LHER0006981753.docx.doc
Size

30KB
Sample

240125-vqtdbabdb7
MD5

03cbc5e4108df2ef09177dcd3821f1f0
SHA1

ab408a500d69b96f934325da1b903c0c6d171a37
SHA256

bf5f7e0398d78184a6efa2368b9faad3a45b5fa69767d36f02dd9ab7d5c419ce
SHA512

1950c7903e8a83408fdfefdac353dc193f7903f0a66b49bb30bfa2f3d08761a6508c833d4e820a5d7b8d260944ebac702c0567e8fc45473ae08c0cc0b16d66da
SSDEEP

768:GhnTgmuFze6jgomfsRYKiAMx9Xg0mpOSqwCot:wV+66rCYYek9XmZ/

Score

10^/10

kinsing loader

Static task

static1

Behavioral task

behavioral1

Sample

DHL-LHER0006981753.docx

Resource

win7-20231215-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

DHL-LHER0006981753.docx

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  DHL-LHER0006981753.docx.doc
- Size
  
  30KB
- MD5
  
  03cbc5e4108df2ef09177dcd3821f1f0
- SHA1
  
  ab408a500d69b96f934325da1b903c0c6d171a37
- SHA256
  
  bf5f7e0398d78184a6efa2368b9faad3a45b5fa69767d36f02dd9ab7d5c419ce
- SHA512
  
  1950c7903e8a83408fdfefdac353dc193f7903f0a66b49bb30bfa2f3d08761a6508c833d4e820a5d7b8d260944ebac702c0567e8fc45473ae08c0cc0b16d66da
- SSDEEP
  
  768:GhnTgmuFze6jgomfsRYKiAMx9Xg0mpOSqwCot:wV+66rCYYek9XmZ/
Score

10^/10

kinsing loader
- Kinsing
  Kinsing is a loader written in Golang.
  loader kinsing
- Abuses OpenXML format to download file from external location
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy