d4f57d79d215924aa49d904a0e1935b18ccdf52207c1ffccee4f5a3f00608457

Sharing

Copy URL Twitter E-mail

General

Target

bf89a611ba09b3785c765d27582c65a8f306051d08e6656bf98dc32a7cc5981e.zip.zip
Size

12.7MB
Sample

231107-q5xl3agh39
MD5

d71b7f83787ad6d0317d2e8f52e4fb32
SHA1

00e52d3598f3d52eb509b9e47a4acbef64177047
SHA256

d4f57d79d215924aa49d904a0e1935b18ccdf52207c1ffccee4f5a3f00608457
SHA512

d0e0a845f142e3fed96f28d198330efc91771e74e905a443b9e32ee1e977d7a1e6df1e4de63c7addd79bc2723ea0d8aee22865f3f9d5663b091b1d51f1330a5a
SSDEEP

393216:leI0ldtb2nWmnlr9iQU4zdL49PWrUk5XFRKYv:leI0vt6nXnlrXrZ5nRv

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  b9dbdc5b4e390aab95160106c6c9971d
- SHA1
  
  30f7b3ea2a678b1184a4ecb4ac956f9d4993056e
- SHA256
  
  45309e6a2c7c48d7c85c4f54c63ab4d8fc486f4ece0c56febbf0001bac108ada
- SHA512
  
  74662df1b94187389d1442f6928e0de823995e19fecf645bdd4c610338f923a562eee52a2bab0e6e84a980c38fc2c8d4050aa000717550843519635391e454a6
- SSDEEP
  
  24576:jPrY4zNJTGIib8PeEmT4seLU5pSNX5AmoQnRekxtITfb:jDTnGj8WqLNpzRC
Score

1^/10
behavioral1 behavioral2
- Target
  
  arpaname.exe
- Size
  
  40KB
- MD5
  
  40b66dc1c037dadd01ce96bee7bd0e62
- SHA1
  
  9bfa95f57685ed40037c0e4b7f3a2cbfc1b581b5
- SHA256
  
  52fd54d7688a2bee8bfaa8027b80fd0ce6f94073204adc80d0b0cd889e82fe8a
- SHA512
  
  7cfd56c296b02e29254e7d01166d1453c6473984d148bbf18349df0cea848a0491e9cd72b09e25b254126fae9d879b6bbe8a72a105c7344a7e4128c192901651
- SSDEEP
  
  384:FWsaAWdbuqBOziF9FmP7NVb6vxwUbMmlR4s6oP:FWsrChBOzK94hV2mUNUWP
Score

1^/10
behavioral3 behavioral4
- Target
  
  bindevt.dll
- Size
  
  448KB
- MD5
  
  d4e8d0e4ebff4a86916a73506c4f9b0e
- SHA1
  
  7b9ede4405de4ce52e8c13ff827568a3f830bd89
- SHA256
  
  d8a92d8d350ba0cbebea84b1d3b65bafa76273c30eedf71cecc70a81a18b777c
- SHA512
  
  7c282b220ff092a7176d611ed386c7f91eafa9eafd32fb7f37fdd07a9724b6aa4ec1080157478ced199e4ef7162a250a5d3f7decb40a9865b5161948da818ea3
- SSDEEP
  
  6144:OLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYkNCdHiVXj:OLKo9PLecFTsU9m9E73FSRsnb6r4Ij
Score

1^/10
behavioral5 behavioral6
- Target
  
  ddns-confgen.exe
- Size
  
  48KB
- MD5
  
  52fb29986c3fc0590bc0c697bb7366b9
- SHA1
  
  dc3332ee7da1da5e54debe5321538aba73eae194
- SHA256
  
  cba2cba93100aa70e5030c1ae9e9be5d4e30cacdd566d2b7a1c133fbbf968c97
- SHA512
  
  73040fe6547ec2cd58149b59f2d72fb5495f0de9c6c22c5e242b65120799f74526c25fe4290413d3732b1be99d6902f81640a6a3b81c8eed8eff4261b6866021
- SSDEEP
  
  768:XzLQRA7T5CzLHG4zW1LnmvbWAjmUCXP4jwP:XQWubm4b1jmUCXH
Score

1^/10
behavioral7 behavioral8
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  e28a952ed413b44c706389533cd0b4e2
- SHA1
  
  8246a2c2836f697ca36ab0365fd3241e847cbd62
- SHA256
  
  fd9ed3d81107e07cd52e240ca0c1ad2d184fa1103bec663ede39342dff196ae3
- SHA512
  
  f2a6fdb30ff448087bcfac59b4481316680e3a2cca648256b2a49cbe95f1c8e8b5964206f5b172d399e866fda497cef2004669abec193b7cd710bf46577de338
- SSDEEP
  
  3072:YiHxxSkCg/Wi3hbRtY7wc4LbxD3SmU3o:Y5khWi3hbRtY0RD3S
Score

1^/10
behavioral10 behavioral9
- Target
  
  dnssec-dsfromkey.exe
- Size
  
  64KB
- MD5
  
  23d47868ba672b038a45070520028f9f
- SHA1
  
  7061b2311883df760300f40b16c5fab0bae84ee6
- SHA256
  
  a0f3b99f39872f0ea2ff9df14ba0a10199bf90e785c6395ed8f41cea6413892e
- SHA512
  
  b0dcfed519e627b3947183d71b7181dc255e7a8586d00841216506e4a67d2c26d934bc922b45ffb2915a8a97bec200669e8cdd14b89d2eb0e84ef52b60e7d800
- SSDEEP
  
  768:LlpERL0ctQ6FSHkXcI6+0feGZzH1pUSXoNmUKaBiwP:l6FSHDI6+vW1pUS4NmUK2
Score

1^/10
behavioral11 behavioral12
- Target
  
  dnssec-keyfromlabel.exe
- Size
  
  64KB
- MD5
  
  caff5808e87c49d97bbc566e5b1034e1
- SHA1
  
  38978998cf77ce8bb64146760f6614f89ef77f84
- SHA256
  
  0a85c819c33576df2cdd92ae91a586d7543dae10f0a384b2c987372c0a5d1c01
- SHA512
  
  5bfa192758cf1a501ed7ca1ce2e51149a64e85a9324fb029746f71d3ad0f4b262b6b6b09bb7e1e1a2d6fdd2c356cda6efd100c371937f7d987548da04c4eef6d
- SSDEEP
  
  768:g7kX3Hvb55ncHgUwdsIM2Tw77EzSBeBd/hWtnmUNc8wP:gknvbnQ3AsIM28dBeBdwmUNcp
Score

1^/10
behavioral13 behavioral14
- Target
  
  dnssec-keygen.exe
- Size
  
  80KB
- MD5
  
  288b318b5b0434251cf0149f333c4ad1
- SHA1
  
  de411d7181e0ad0a5bd50bdb9d34df91e7f1a6ad
- SHA256
  
  90432644022187a287aaa737306c8132bfaf0635df0c4e158d7070cf13550497
- SHA512
  
  d9e6f1e9bdefcb4a429d4fd126b9a913ada990398370bb3a74f43ef2fbd2b45efd97a792b4544687dc7cade74b24c6ca05165f66416a4c9f4e0b46749dd5c2d5
- SSDEEP
  
  768:LEaLmRLRoBrOFNn6Y5KvRUvzpo7Gg1d+JZ3KWgsXCVlzmUeowP:IaLnBSv6YK2o7t1EJZ3KWgsXCLmUeF
Score

1^/10
behavioral15 behavioral16
- Target
  
  dnssec-revoke.exe
- Size
  
  60KB
- MD5
  
  d9d36d4c7c6ae2b117bc48463540bdaa
- SHA1
  
  478d9d0d0a5856cf0ba52a0efd95eb9d306c6037
- SHA256
  
  3b855ae3a4750667110b5ebcb062bcc59618984322d1f08f3e7dba67562f1391
- SHA512
  
  e716351f2659434bb2e3aa6bd7f058b7e61042f7e43ed1f9c06aaa5e6b66e201cda7520254e66abe697e63e4603c3c58210a2d3d668a9e0f82c7615fd415c8fe
- SSDEEP
  
  384:aAgHSEKHXO0Gmfhbs69sy6hzCnQvrZ2me+hga6vxwU5g2H2mKYbsy6oP:fgMX08s6SyQzHrkO+mUdH2mcwP
Score

1^/10
behavioral17 behavioral18
- Target
  
  dnssec-settime.exe
- Size
  
  64KB
- MD5
  
  587e7e1f193edb82a51b6f64dd3db4bb
- SHA1
  
  a87f4f114a95b9344ef184fee496a2b544a09620
- SHA256
  
  6989ed93f2c54185d6cbd8e0422cdb78fb2ab7dca268712454748f93ac3e3c07
- SHA512
  
  f67982473b17da224958b9acd21ba3c6da55d9e801ceaf0e746e26c4e76840926f50834881b71fec169b4c3c1dbe0347e2111329895e41c9808e1b2034aa18ae
- SSDEEP
  
  768:76Y6vIEOd51dzSXcuaZnzvn5zKse1j+WKeMmU0izGwP:76Y4MuaZnzAse1jhK7mU0w
Score

1^/10
behavioral19 behavioral20
- Target
  
  dnssec-signzone.exe
- Size
  
  136KB
- MD5
  
  b5d19ecb7aa1ff963b5534b2624f627b
- SHA1
  
  6b4d5e22965ce9ec20113bed43613355df4b23c8
- SHA256
  
  e1a05f753f199d420c83b0b806c879b03eda9e857cf884e27666926b85d2a49d
- SHA512
  
  8e8a07c2fc95b1514f485ff16afde8c4d57c14450e16127fe87d2aac30b76db06eb8ded4b84bd09b053255259cd15ea659de457a7e2f3f3ce97fe0fb5ea468dc
- SSDEEP
  
  1536:TzSixI4He/vUAIjEp+RdobtCFlgAJh56+c5AkXaD89SqFTXwDx34GA7GUmcpyq:Z6/eyptakXBgYXwDx34GA7GUmx
Score

1^/10
behavioral21 behavioral22
- Target
  
  genrandom.exe
- Size
  
  40KB
- MD5
  
  550f2dd877affedfe938d6eca37bd4c4
- SHA1
  
  329980cfa1210a0e6921853a7751cc8ca11dc49d
- SHA256
  
  fc26febe06d0bad2c51aaab7b523292f8719fd79bae90a1ad1068b54e0fd8d07
- SHA512
  
  02bb0fe5897336a08de37ce8e15f8ec113d52276d1b2959be249f0ae6953ae9d462c60148fc93ea62fa93e1c97920b198d138fcc1a7ae80acbc2c337325e76b7
- SSDEEP
  
  384:tSuHRskrQsU5Ho04zu75yenQbywAoPxwUbgWK+eK6dP:tj2Z5HofzG55nwAoGURENP
Score

1^/10
behavioral23 behavioral24
- Target
  
  host.exe
- Size
  
  120KB
- MD5
  
  20a2e99a9ff7505d3293885bebb8ef44
- SHA1
  
  6be184a0c62ae4a2f6dd2d3f1d7043449b2b36f0
- SHA256
  
  2724c2017ee6b098fc59305a9d5881f16b93fa283f297998fa7ab4b7c9b46c9e
- SHA512
  
  889b09203b74a17579e69f7177689a35aca9adf0c64db92b137c93ab926717f180ccd28b9f8402ebe6e2bd00fe9add3c9c25fd13b7e72a9ec84c47455c851b9c
- SSDEEP
  
  3072:QqfkUWkj+LFkanauQlhsQOQU8gbxDXYGUjvj:IIAkaauQlhsStkDXY1
Score

1^/10
behavioral25 behavioral26
- Target
  
  isc-hmac-fixup.exe
- Size
  
  40KB
- MD5
  
  028e67edfa098b9d1193d9f9c0d50a9a
- SHA1
  
  efbb992172e965d9977394ab3961e7fe6c129fa3
- SHA256
  
  62e198728da754a81c45c02c598b80d3eb86eedf3989b2c0214f76ad13853d42
- SHA512
  
  039d5f154343162ee9558dce6c2c61664c7ee4abb95bc01459c0c813496e62aadaf1452ace3ff0647e2b7d31a8e06f8c2f08bdad2dba2c133f1527dd7bb1dec1
- SSDEEP
  
  384:0ZQ/K/tLJzr8YPfWjBu66vxwUbT4xYzRos6oP:00ctLJz/uUmUgxY2WP
Score

1^/10
behavioral27 behavioral28
- Target
  
  libbind9.dll
- Size
  
  100KB
- MD5
  
  8933bc194597a14924c82766a7cdf38f
- SHA1
  
  18e2687df870d229ccee84bcdbf5638d04386958
- SHA256
  
  8887b3b14fee61b5f90415ca5e0ca79f9d5a477e22c5ed5717295f3c47446859
- SHA512
  
  5baef6cba4149f2107039560cbf29004cc83ac8e1451ab7903a5cb22d75c1cb57fa5acedef3587e7e613c6dffce3403c49218f7943e6bda8b0e810d3d10e4d41
- SSDEEP
  
  1536:9kTkc5NZ4Y1IuY1LzsTwF9o33jwOCJymU4abGmat:mkc5NZ4h1LwTwFS33MOxmU4A2
Score

1^/10
behavioral29 behavioral30
- Target
  
  libdns.dll
- Size
  
  2.3MB
- MD5
  
  3bfa94cff7da5031a8418770a7bf24ff
- SHA1
  
  990320f53010518445bce2a298d202ffe97171d4
- SHA256
  
  a01d5be92e0860ca22d8db032640ff000f57755ab40132f5da731d04799a99fd
- SHA512
  
  7fc9e51a9ba6c7190badcb942e69ccfdd4d14bbec915a58f57c9c55e912516f244689d0b032e30baa1cf5c13b61d1655077c67f6818a32d4b52bd0e350572a07
- SSDEEP
  
  24576:zEhnCpaFhQJMIk/BV8tSqyZKgWVm1760QjZK7dURIQhHzfsPC9qF7SnDtW2Q6t7g:dumJMIk/B76n7hHzfsPC9q0tW2Q6
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32