General

  • Target

    7520afe6986d94353888f33e315cc497

  • Size

    859KB

  • Sample

    240125-wb8ecscac2

  • MD5

    7520afe6986d94353888f33e315cc497

  • SHA1

    53ad05c13e723138d6c9f4504df44f2c713dacbf

  • SHA256

    69d679932d4e6e3ac60c70e7255f1a716d589c036b9d89fd649313806b3cdd5e

  • SHA512

    d515649b9167537e9420566ba0303c33521a66202d3ce25a41810a3746ae95386c18f1dd52e256194826f727b9721be5609b7474d60eb9e85dfb5ef2f6b5470b

  • SSDEEP

    12288:vVONXWALeaxJCdRCsp8srcqgiY7kLExBus21XR1qmGemsdOJM2DOkswyneKK9:INXWSeddRbKCy7kLaA1X/ksYu2DDnJ/

Malware Config

Targets

    • Target

      7520afe6986d94353888f33e315cc497

    • Size

      859KB

    • MD5

      7520afe6986d94353888f33e315cc497

    • SHA1

      53ad05c13e723138d6c9f4504df44f2c713dacbf

    • SHA256

      69d679932d4e6e3ac60c70e7255f1a716d589c036b9d89fd649313806b3cdd5e

    • SHA512

      d515649b9167537e9420566ba0303c33521a66202d3ce25a41810a3746ae95386c18f1dd52e256194826f727b9721be5609b7474d60eb9e85dfb5ef2f6b5470b

    • SSDEEP

      12288:vVONXWALeaxJCdRCsp8srcqgiY7kLExBus21XR1qmGemsdOJM2DOkswyneKK9:INXWSeddRbKCy7kLaA1X/ksYu2DDnJ/

    • Kinsing

      Kinsing is a loader written in Golang.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks