f9a9e358665b076dc9d8080430d20b31b5da4d6fe4664176bc323909a1c2bf65

Sharing

Copy URL Twitter E-mail

General

Target

acf397436ba84077e4ddfc3abf4b631138939b03c1091d5a5c7761dd923108da.zip.zip
Size

12.8MB
Sample

231107-q84vjshb97
MD5

3dfc5fdc1b592dad9c5e564576f845f8
SHA1

297525b96b163dbd204f12053f6b94329b855d4e
SHA256

f9a9e358665b076dc9d8080430d20b31b5da4d6fe4664176bc323909a1c2bf65
SHA512

6b2ddfc7a5789d10f3f808276f1cfe7afe2c9da198ef64a097e6b4da735d17d610808188ce4bea73d9cd8a341645828a4182ae71c582c9face4636d57e7398ca
SSDEEP

196608:Hjb6WPbJv9ae3o0P6yxAK9rgbN3imfEUTgiI8KSa7Xeh8so3JX0fKVidP9Zy:HjbxPbfr31yyqBvdc77NXidVI

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  f18302a137ce44932b065afebca3fd15
- SHA1
  
  15763bcad147366ea7027441c59e2e5c4b94bdf3
- SHA256
  
  baf9b622259955e61f59236622a7d470b37eeefaf0501736c076b50cea7ac274
- SHA512
  
  2a5de42215a5c1ee7da18813da3e825e1f812259d82f59ec73a908e4dc1d36f4fb6a3192264d41b70c50add69f7e169058e762c2b39ad805617f05e5ea5e62a8
- SSDEEP
  
  24576:GPrY4zNJTGIib8PeEmT4seLU5pSNX5AmoQnRekxtITfb:GDTnGj8WqLNpzRC
Score

1^/10
behavioral1 behavioral2
- Target
  
  arpaname.exe
- Size
  
  40KB
- MD5
  
  0fd5b28e0d1e8a76ccfdbd9bfb9bf6ef
- SHA1
  
  95aff9e50bc7dc0342ebde9587895b25747639de
- SHA256
  
  61021ef1b658bf93ec1e92351418d3f9643322060ed716ead611496744876384
- SHA512
  
  111281cbf102fae797aa33b20080f86b358b9a63efa72410074c2e776a98544d5843f8c433e476d7952d1ef7ef580a68409c282ebf0e32586f469c444e111226
- SSDEEP
  
  384:4WsaAWdbuqBOziF9FmP7NVX6vxwUbMRlRKs6oP:4WsrChBOzK94hVqmUm+WP
Score

1^/10
behavioral3 behavioral4
- Target
  
  bindevt.dll
- Size
  
  448KB
- MD5
  
  fee4f99357b8415fd9c00779e0e020e1
- SHA1
  
  a6e6d34179424219b3235c29b5ce2d3d59c17766
- SHA256
  
  6dc0c448fa837b5daa1e9ba1039b1f00dd6afe7dc7628521153ff8d91d50081f
- SHA512
  
  87d1f217ced4a9861b2e2ba57272b99694c29de62dc5d2b3efb30ef70fe9988fc55990f16ec7149e3cb702ee6ca842191744524e483c1ffc0b5b4094f839dc16
- SSDEEP
  
  6144:zLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYJN4dHiVXj:zLKo9PLecFTsU9m9E73FSRsnb62mIj
Score

1^/10
behavioral5 behavioral6
- Target
  
  ddns-confgen.exe
- Size
  
  48KB
- MD5
  
  a0b86a1f0a468d1a6b3fad95c3e9f40d
- SHA1
  
  e20fc8e64a71471033b0acf461b2a55a22fa47f1
- SHA256
  
  3fa5a7d17dd7d492d5de20e52582c808a8a6cdee104433b4af4c23a0bfaba551
- SHA512
  
  6b7b578345aa84dc012056b361e20256bc6fd9dd9157be54ee91751a30fc1a7fe4572946f22330534565e12ebbe7bb10aa3cf58f6f3e32b670cfb92f9f354662
- SSDEEP
  
  768:ZzLQRA7T5CzLHG4zW1LnmvbeAjmUwXP4NwP:ZQWubm4bdjmUwXl
Score

1^/10
behavioral7 behavioral8
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  7ff59f78ef2fc0de9be7c239a9ac88fc
- SHA1
  
  d6052efd94835eb7ed642e3911f7c0cd572daf29
- SHA256
  
  8087d8acf32089f005c246dc0bbf9af9a3d51ed1791e67e30bee7a163f1638f6
- SHA512
  
  46c24e710b6f8491c816cfcc3bd44a7efc61d2db22873392defcd35973e08ebcc2b15bc5fb134f3c47697d41e2c86c67126d495efcff2b30d1de8bb792984784
- SSDEEP
  
  3072:KtLuHQknC3VJOV48dZR63nKUGahbxD3pBmUE:QO1dZR63hnD3n
Score

1^/10
behavioral10 behavioral9
- Target
  
  dnssec-dsfromkey.exe
- Size
  
  64KB
- MD5
  
  879868f7b54dabe5aa962dc9e4c9c880
- SHA1
  
  53216f4b2509aa35f5aa75641c9d3193b26b8dfb
- SHA256
  
  0ff13d00b36b394bedaf173921e087395aeabe924e4dc6288cd44f932bdd34f4
- SHA512
  
  9fce37bf42e8625dfa41dde03f0887207a6bed637f02664668ff77cc9baad0799634ecf76ac7c3e750c6f381cf0df9994afe4d2a485121084ae8e7c85de726f4
- SSDEEP
  
  768:y84kb11xoNF3kALHJzfPRNUrny8vFmUQ3BTawP:PZ1xIF3X5PRNUry8vFmUQ35r
Score

1^/10
behavioral11 behavioral12
- Target
  
  dnssec-keyfromlabel.exe
- Size
  
  64KB
- MD5
  
  8b62dc149daf272f47bab3fcc95f7592
- SHA1
  
  63bd035479ca0b913fa2c70c936ead0bd83c5396
- SHA256
  
  393b00bb349eb56ed515739ef9621506b1c63583b440473d1d7e1e5279532045
- SHA512
  
  f5d6c950da1a26a0a57251660c6cf6e92cbe6424a7228a9072d50efe327c2ddd27b8be222096218321b63e660b80d2e0f14aeb4a65d32bd23345fefa2e21700c
- SSDEEP
  
  768:25aibD3jkF7zg0w4HF8tUSKzzgpOsT1rJ52mUndRx8wP:AbDIJw4HgbpOg1mmUdN
Score

1^/10
behavioral13 behavioral14
- Target
  
  dnssec-keygen.exe
- Size
  
  80KB
- MD5
  
  5ecbce253d959e850b8027010af99404
- SHA1
  
  43d9b10533cfa9b703124d4edd37f82bdad6cc60
- SHA256
  
  bb66efd9f172eb867a2dc6e7cad7a193befe712a1d93e0857541113bc8b33311
- SHA512
  
  2f19e8dd416c5107b8b532aad1d38531359142ddd829ebc1e01ed44c85c1a54080d37580bb9a9cffad3d10068a043ff643c8c8527582391e5561168b5514a99b
- SSDEEP
  
  1536:537Cilie8b+hyIHl2r1EJZ3KWgsXbYmUgnKRK6:537CoJJHl22JZ3KWgsXbYmUgnKRK
Score

1^/10
behavioral15 behavioral16
- Target
  
  dnssec-revoke.exe
- Size
  
  60KB
- MD5
  
  3230b8103fa41cbef4bf2f78eebfe856
- SHA1
  
  96a470af8a671681c8fda991d3c162edbb79a24a
- SHA256
  
  10e10c45402994f66f9600b12cad72b8e14f375eb9323826bd04a18856610762
- SHA512
  
  dfa73a5c7e7b89cb5b03a96facb5a947ede0dc1f82cce97b4fe1d3d94fb0b44fcf56604793e44f9b6c36e2786b6340505e9007f823b9642b4bbd5b8dd4e84ae5
- SSDEEP
  
  384:ktiU6tFM+r7NE8PyJ0i5GDRz+NrmhzaCoE2utGggq6vxwU5ICpYbsy6oP:uifHjPVzDRir8zwnxgSmU1VwP
Score

1^/10
behavioral17 behavioral18
- Target
  
  dnssec-settime.exe
- Size
  
  64KB
- MD5
  
  93e091fadaa417859a148e9573deb2ed
- SHA1
  
  cf1e35909a0668057765fe2f19aba32282274e85
- SHA256
  
  db34fc9dab0a19e38248ce140cd6bea051089fdc156a1fd0a07d5de673700d64
- SHA512
  
  25383b40b120ff4007b5382c551c99233d5f4e52762bfca9b110d048657aa7968c4349c888431b8276f09f136656ae6c864949761fa54bb9977f0e3b68ef7316
- SSDEEP
  
  768:KtOhauksm4bJiJUzSkuodpIkkzYiS4CG4WKepmUZ8txwP:iOha+J7Sk7nfniS4CsKemUZL
Score

1^/10
behavioral19 behavioral20
- Target
  
  dnssec-signzone.exe
- Size
  
  136KB
- MD5
  
  a8de6210390c3bf9b52f9005d35b6c3f
- SHA1
  
  9d47494c79040d851431549e54de10ee360d857d
- SHA256
  
  411b9268d58aafcb06719f94c211fdf0584cdb88f8af89397225e125ea6e9043
- SHA512
  
  5304af0eca3b24b5cb60521b7d8a0caa1c4a70a0272590dc0f37630e48cf18a7de436597bcb497e70fe1f2c89914b0d57ae5cba03999adfa3a9cd11b8b1d6bb0
- SSDEEP
  
  1536:scebHnjnmicX12Qck5+yKnKRzrZmDmoiWW1Qf5i0yv7fC3LpsKMm4GAsGUAp:YHD6I8eKxZcmlJG3LpsKMm4GAsGUA
Score

1^/10
behavioral21 behavioral22
- Target
  
  genrandom.exe
- Size
  
  40KB
- MD5
  
  d568a2298391a1e5df59a69ed4e2ec8e
- SHA1
  
  ab1c73e3e04a407d9e546d09cae3004755d2b56b
- SHA256
  
  bd0da04c9633c1cd55d73d5c6eb03b24728689412caeb34d9f8c784b8e73cc07
- SHA512
  
  bf36e38763485747894c2a21ab65a87c01950992771cbe59441bf66f56bb1e1a4910277c73af5e55ad6d9021bba13b7c4278a7d5bfa12ac847b3c0dbf2944975
- SSDEEP
  
  384:JSuHRskrQsU5Ho04zu75yenQbywAQPxwUbgcKgeK6dP:Jj2Z5HofzG55nwAQGUDaNP
Score

1^/10
behavioral23 behavioral24
- Target
  
  host.exe
- Size
  
  120KB
- MD5
  
  28be774648e09ec164c9782203628913
- SHA1
  
  1e217e7d08ca7c2d10be173b0e0909c7632a82a4
- SHA256
  
  af223830525b4dedd065fb1ce338a1e7aa18135844748ae46b2a1ce83674e92d
- SHA512
  
  6ee29e76689784ad6d2d4878b4af657bbb66067ac047872d1e66b678002663b53fc780c17c2765e8dab34f464e17bd25e534c39a76fe9774b80e67eb627990e9
- SSDEEP
  
  3072:qvjRCpNHupkcGPIw8PbmKF9bxDX2eGUeq:WUgkcGIw8PRjDXln
Score

1^/10
behavioral25 behavioral26
- Target
  
  isc-hmac-fixup.exe
- Size
  
  40KB
- MD5
  
  0888de4ea964f9936ecd550b54152270
- SHA1
  
  dec09108282270a50c597b601447921b0c229f9b
- SHA256
  
  d5121474d4ea141bff18bc00ee87d843dad591a1415490a30ffeee6c0926fcc8
- SHA512
  
  11a9d8c00c061c2734b242813a7a098aa8a03aad510f941e510136fc44fc1f3b27c4d6a88cc8661c8cf82ca19eade4c05a2cf34422c0dbb7c87420febf11ddc9
- SSDEEP
  
  384:fZQ/K/tLJzr8YPfWjBuO6vxwUbTKYzRus6oP:f0ctLJz/u8mUCYoWP
Score

1^/10
behavioral27 behavioral28
- Target
  
  libbind9.dll
- Size
  
  92KB
- MD5
  
  3900903c5d42613018f1f66ad3673d4d
- SHA1
  
  47cfde67e993ac819ef17df5716ebff58a53b46d
- SHA256
  
  81ec5d13a372d45ef37264f45a7710d13ec400ad942ed912d89f051b0bf975cb
- SHA512
  
  db0fd6fea6e5107681405e85522f11aa8443be8148c04736cf30e0b61c9b37fef4f8dce2a94f828e2d5b8c552b123c779c06ab801f626c9c3877dec3d55c1bec
- SSDEEP
  
  1536:9NIvYM2zRD4toChIywf+WgZUPPIeBSz7YmUvn7PrP3:9KvYM2zmtFhIywf+jHeBNmUvnDz3
Score

1^/10
behavioral29 behavioral30
- Target
  
  libdns.dll
- Size
  
  2.4MB
- MD5
  
  77f4224b81c9333a0a8c8200c6d2fb3a
- SHA1
  
  f6787f3289d11a0c205a7026d85c5b2d055c00cc
- SHA256
  
  b1fd0d955ecf8c645ae55bb58e92a0b5ff231c36df978dcbf67b92c09e7459bf
- SHA512
  
  27caa3f30a4b94d94aefe5068fd1f9e385731e363db710c500dfdc862c89945b528519ce94aff1bc54afaba5f99d8a2e442cc40d33c8fef7c50a131f01bb9a2e
- SSDEEP
  
  49152:bGwMSlbLOrUH3JvMbrehtzfsPGPq7it2twe:b/a4HMszfsPGPq7iuwe
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32