862f0cf94a4f5fe0e1ee595be4ba65de225dce4faf02af127866aca1b00f4a83 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

KingzV3.exe

windows10-2004-x64

7

Sharing

General

Target

KingzV3.exe
Size

17.9MB
Sample

240408-q2f5xadh2s
MD5

fafd6928bc30c0757ebc4ed644b9e1bd
SHA1

760f9fc7ec9c20b9bd062b16d36e1e6971532071
SHA256

862f0cf94a4f5fe0e1ee595be4ba65de225dce4faf02af127866aca1b00f4a83
SHA512

f4de95c749f12d58a90951d39d1486e4f2a3ea8a8c47bd5823e60954c3034c932e9ce3e0bd365cd464b21217ab48dd3fcef85fba0306c9806c03baf6cd6869ca
SSDEEP

196608:JZu78K/bJpj5hkEI/F5D/SFGK1tDfyGgm0sKYu/PaQ8wBdnpkYRMi2SEN7JTDuVk:zu7L/JhQfu3DfDg8Q8c604FN0GhEF4v

Score

7^/10

pyinstaller spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

KingzV3.exe

Resource

win10v2004-20231215-en

spyware stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  KingzV3.exe
- Size
  
  17.9MB
- MD5
  
  fafd6928bc30c0757ebc4ed644b9e1bd
- SHA1
  
  760f9fc7ec9c20b9bd062b16d36e1e6971532071
- SHA256
  
  862f0cf94a4f5fe0e1ee595be4ba65de225dce4faf02af127866aca1b00f4a83
- SHA512
  
  f4de95c749f12d58a90951d39d1486e4f2a3ea8a8c47bd5823e60954c3034c932e9ce3e0bd365cd464b21217ab48dd3fcef85fba0306c9806c03baf6cd6869ca
- SSDEEP
  
  196608:JZu78K/bJpj5hkEI/F5D/SFGK1tDfyGgm0sKYu/PaQ8wBdnpkYRMi2SEN7JTDuVk:zu7L/JhQfu3DfDg8Q8c604FN0GhEF4v
Score

7^/10

spyware stealer
- Drops startup file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Process Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy