anchordns | 6db6aacb0d4326973cfc5a1915fca2557b0d428865dbbf62c705b03bbf32a1a7[.]bin[.]sample[.]gz | Triage

Sharing

General

Target

6db6aacb0d4326973cfc5a1915fca2557b0d428865dbbf62c705b03bbf32a1a7.bin.sample.gz
Size

340KB
MD5

192736eb08db9998ff5d94004a66a805
SHA1

067681bf07090888144b70c562e281e23c7b6bde
SHA256

49e3354652b992abb8353ece9f3116040bf63bfcff52027be7781369a12d13aa
SHA512

195f937b9b573585b069fea9fb09c2745913571f62ab28714be97063d5abd50720e4a0ed0ab4fee87b2c777016bd8976a40bf2ef1295d7ea1afde9281b495116

Score

10^/10

backdoor anchordns

Malware Config

Signatures

Anchordns family
anchordns

Detected AnchorDNS Backdoor 1 IoCs

Sample triggered yara rules associated with the AnchorDNS malware family.

Processes:

resource	yara_rule
static1/unpack001/sample	family_anchor_dns

Files

6db6aacb0d4326973cfc5a1915fca2557b0d428865dbbf62c705b03bbf32a1a7.bin.sample.gz
.gz
sample
.dll windows x64

Exports

Exports

Control_RunDLL
entryPoint