Overview

overview

10

Static

static

3

AWB_NO_907...11.exe

windows7-x64

5

AWB_NO_907...11.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AWB_NO_907853880911_1.rar

  • Size

    667KB

  • Sample

    240125-vwzghscdek

  • MD5

    ee1efb16ea184012f40cc55c49e3d168

  • SHA1

    2876ea5f23235f09edc597c09eb99b710e2685ac

  • SHA256

    94b8e35806ae14104aa178023e69bc41f417f608d4dd226d626a74e0e5a985d0

  • SHA512

    d6e0b8871a4c3a71c2e6a9ec478378151f5b734d3c4d9f4fddb3d369a1210b8ab2db479ded37ade379401603d7ed27ebb022533a51dd20c05b55af23489bbfc8

  • SSDEEP

    12288:X9ZTQoW7i1DKX51c1KQwPaBgsmsPO4Kg+HlRsaxn1RhXvSLRcrnO:XPTjSmS1cAPBLN++HHsax1RdEarnO

Score
10/10
kinsingloader

Malware Config

Targets

    • Target

      AWB_NO_907853880911.exe

    • Size

      743KB

    • MD5

      2685c5b3d73fe94a815a84c1dd5813ef

    • SHA1

      edf893ff59c3437e942fd8cd40c9381ef536dbf2

    • SHA256

      27769f4bb96d0e605bdc282658c6a729e4ceb8447cd9e1f9880c69862258e66f

    • SHA512

      a989d2198b0a9d8bddff535bd821c124b347cbdb0a2ffb91ce76b9d91a4847e38ffd2a58300e53366004628729d5ac9d9dfc10539ae6808ab6c3d26877e6fc65

    • SSDEEP

      12288:X4nWcI58atfrHsfjGrfrtofP/l1rkxNVOIiB3bow5404ni0C0eb:X4Y5JDsfjStMn3rkxNo+w5/4+0

    Score
    10/10
    kinsingloader

    • Kinsing

      Kinsing is a loader written in Golang.

      loaderkinsing

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks