Overview

overview

10

Static

static

1

752124589f...b.html

windows7-x64

10

752124589f...b.html

windows10-2004-x64

10

Analysis

  • max time kernel
    138s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-01-2024 17:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    752124589f9ca0daf4780d41e3346f8b.html

  • Size

    28KB

  • MD5

    752124589f9ca0daf4780d41e3346f8b

  • SHA1

    c6233489b42aba25b1c559e89c174fef6aefab6d

  • SHA256

    36fc20a571ccc44467f13641cc340097e2a1d205144471c18f392294b2af16d0

  • SHA512

    42494dc801999cfb1ca4775625675308301c05dd568eac891d76b42c7db0095b15437de89735875a8168a285ed28be46237cc34dbbdcfaf6700605838cd19df1

  • SSDEEP

    384:SIlHuQqpuqtevch6u3ueqf/07hpOuRhL+pZkRtCePuJyUCMn10iV1rOVfBJB5i1Q:SvhxYvcheeqf/iDhUtqiVROVfN5i1kx

Score
10/10
kinsingloader

Malware Config

Signatures

  • Kinsing

    Kinsing is a loader written in Golang.

    loaderkinsing
  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\752124589f9ca0daf4780d41e3346f8b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:568
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:568 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:3620

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    1d7f25dc2d6699e79619c31ff8908f6c

    SHA1

    de3c1be6c3f3e7f6eadbe715ae575794e5bf1221

    SHA256

    845c8a47772a9c534cf13a177c83c40db250a6dbbd0a369401ea884b8d058d6e

    SHA512

    7a6e1765a31821e79b766ea0675ed17d735a40766d5fcd6cc305a8d33b8257d11e492d4ad8626f2909e1c2c2d93e8d04ed133effd0a3ec29324ec3ca36a22a1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    719f967d1c6e8d636c835cc4891c05ce

    SHA1

    8931c2cd37aef69c4a5a4c20e75767db8980679a

    SHA256

    3570fb92f1b7bdd2c9d85e28383c1b4b6b912415375481ae403364b3fafd3e07

    SHA512

    21169d5b407e117ad2ba97512754ffe1e38c7c70f9fd2b16dbef210d7f5c6131647e588b205b21c7d7841a1463aea7b20e427a9c3d9e51a5abc06d9f4baad943

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    686B

    MD5

    5abe14be54e9366d3d82c31b1abe562a

    SHA1

    ce368f1432e079d011c993e0ee10c4699560c51e

    SHA256

    33078e96a050c1d340bd799ce9d0377c6306924ec9e11b73231f87da1fc04f34

    SHA512

    ab13e4dcf168f271e7572ab94c7e37e5b2f60f37256e4bc20acf11f62d951f7223ba9254c022498144522b149183090dc8e4fca77b5091a838650a15a140ff07

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    641B

    MD5

    8e7bba7650b852d259f6f45683b18379

    SHA1

    845f22c620e263bca1bff65a42156707cb9a34d5

    SHA256

    dc473a445d0ab8d84d4dffc36f1b75ea37a41649e6c9e596e518be2a6df096ce

    SHA512

    1ffdaf8a87815790da8b77313215d5155b374fbc91995af3ddb29b6b024d013ed318a674784a087a00221d3f754caa7dc232260058e2181d390004492c4e1b0b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    26KB

    MD5

    c577aefc20fb277e5653d7eb46b8c4a1

    SHA1

    93b16d8733c63e6ab902d72b73b32f2c8981d9de

    SHA256

    dbf4a375b7e9909d9d73ed4ac1d817acef60cc7576d86b024b4352e8ab768272

    SHA512

    578f32a3968d05fdd93086fe0b3f27fc34656dbf932c70cb6e5c11aba8654ed0a8e56a46549e93b66ed26c0fce2d593974eda4636033c1043087280c3b8f5c4d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    990B

    MD5

    e48fbc2d08f7fd511bc7cc6a0d3ebbbc

    SHA1

    237c7ac82e69301d3969e0d599951afc9b13e375

    SHA256

    47724da154d7270daa0b118055d05789c911b34738080aa1c0b3992986202976

    SHA512

    5b9360701d6532d50c6f84f3dfb2f90d61128614ecf37542359b8e7100004d5633395bff65acdf35f995437eef16f1f1727ebd74a6848c856ba612cc3d5d37f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    990B

    MD5

    9db41f5fd104e17a9de0b655d1756e2d

    SHA1

    d8649818124ae0e4ac93e7c118f79de4b0de5575

    SHA256

    7b5d0d90a021e79692f2afd89279c6b72ad12163670d9605913adf0392f435c4

    SHA512

    886015d301fffe00d3feb4c331691c284da1f23007ef7a5d768a5d1e13afef63bbede47523a4385a4af3d58efa9cf08dbf906d31ce132f1337d179784162d670

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MYXYMIGM\www.youtube[1].xml
    Filesize

    990B

    MD5

    2f1584e50334658b58f377b6c0b7e846

    SHA1

    fa0971739e573c059fc3c07ba7d50bea6cacb326

    SHA256

    ac52e18b76caaf105ab30b0e43eb0080f64270ac5d274327c5a6aab861e8d412

    SHA512

    28fbe21babc189b6baf892695addefb084a10577efbdaec6eefa13e23a3784d4d467a1d637548b1a269096174e571fbe1a5525acfa506499e6f143baef356dc4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\versionlist.xml
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Z0UNWU5J\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit