anchordns | 6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d | Triage

Submit
Reports

Overview

overview

Static

static

6c7847d103...8d.exe

windows7_x64

6c7847d103...8d.exe

windows10_x64

Sharing

General

Target

6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d
Size

162KB
Sample

220128-we22rahfgp
MD5

dd1d2518d48b0c9b15dc426816f627b5
SHA1

e26d5ed1aa0c38a64f0f9c2f85fc144b320c0147
SHA256

6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d
SHA512

dea2c64e3b245d00afc1bfa0b8f2e8baa9559e11b1af81dc25eb8d9a6e17460be9357aa3ba0a3f2d2a618b550a45a9ec23a1fe3edf0a123dc0bb95901d1b4840

Score

10^/10

anchordns backdoor

Static task

static1

backdoor anchordns

Behavioral task

behavioral1

Sample

6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d.exe

Resource

win7-en-20211208

anchordns backdoor

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d.exe

Resource

win10-en-20211208

anchordns backdoor

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d
- Size
  
  162KB
- MD5
  
  dd1d2518d48b0c9b15dc426816f627b5
- SHA1
  
  e26d5ed1aa0c38a64f0f9c2f85fc144b320c0147
- SHA256
  
  6c7847d103de865f906c2e1b7372f2e11ceebec890a68ee6532cebeab852618d
- SHA512
  
  dea2c64e3b245d00afc1bfa0b8f2e8baa9559e11b1af81dc25eb8d9a6e17460be9357aa3ba0a3f2d2a618b550a45a9ec23a1fe3edf0a123dc0bb95901d1b4840
Score

10^/10

anchordns backdoor
- AnchorDNS Backdoor
  A backdoor which communicates with C2 through DNS, attributed to the creators of Trickbot and Bazar.
  backdoor anchordns
- Detected AnchorDNS Backdoor
  Sample triggered yara rules associated with the AnchorDNS malware family.
  backdoor
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

backdooranchordns

behavioral1

anchordnsbackdoor

behavioral2

anchordnsbackdoor

© 2018-2025

Terms | Privacy