General

  • Target

    bf4721581c32ddf7c23903589bc8d1b864164a4f984d3ced3cb5e4532159157b.zip.zip

  • Size

    13.2MB

  • MD5

    97703ff8b36bf6a9a1e3e41c4e3513f9

  • SHA1

    e9e827e646ef706734239bb866770f096250f65c

  • SHA256

    4335814d92e89f04cdb8bcfe17d10a49a0223830ddd1c75fb4697442b5c4c75f

  • SHA512

    cd74bfb9145c9b867ec41bb8ad8f8ba1a9472202be57c2236d697ff6c4356004bcf616cb3b5f2f64ca8f15fb1a4aa04b04891281ded03c0d9b372fd3e4b3921e

  • SSDEEP

    393216:grfxDxvUAb7cDONaZJiEwBC9mD1/mvsN2y:2HRcDONaZJtwBGNvsNT

Score
3/10

Malware Config

Signatures

  • Unsigned PE 34 IoCs

    Checks for missing Authenticode signature.

Files

  • bf4721581c32ddf7c23903589bc8d1b864164a4f984d3ced3cb5e4532159157b.zip.zip
    .zip

    Password: infected

  • bf4721581c32ddf7c23903589bc8d1b864164a4f984d3ced3cb5e4532159157b.zip
    .zip
  • BINDInstall.exe
    .exe windows:4 windows x86

    6709d7f3fb0690f62699325224ee663e


    Headers

    Imports

    Sections

  • BINDInstall.ilk
  • BINDInstall.pdb
  • COPYRIGHT
  • OpenSSL-LICENSE
  • SHA256
  • arpaname.exe
    .exe windows:4 windows x86

    a57a15fc8d4601d987364e83fefa52c7


    Headers

    Imports

    Sections

  • arpaname.ilk
  • bindevt.dll
    .dll windows:4 windows x86

    1a433fe8295417eadfb47b95d92b1de7


    Headers

    Imports

    Sections

  • bindevt.ilk
  • bindevt.pdb
  • ddns-confgen.exe
    .exe windows:4 windows x86

    b518fb8961ebf953ef6fbe2f1eb0ab46


    Headers

    Imports

    Sections

  • ddns-confgen.ilk
  • dig.exe
    .exe windows:4 windows x86

    f6a9de7277f06eb5f2104ffc427f1d42


    Headers

    Imports

    Sections

  • dig.ilk
  • dnssec-dsfromkey.exe
    .exe windows:4 windows x86

    e4a163b642da625a62063b27df0a72fc


    Headers

    Imports

    Sections

  • dnssec-dsfromkey.ilk
  • dnssec-importkey.exe
    .exe windows:4 windows x86

    424b53a886714022191d2701f6ac3502


    Headers

    Imports

    Sections

  • dnssec-importkey.ilk
  • dnssec-keyfromlabel.exe
    .exe windows:4 windows x86

    91d0e7ecb76ce2d53cab578ca9782a97


    Headers

    Imports

    Sections

  • dnssec-keyfromlabel.ilk
  • dnssec-keygen.exe
    .exe windows:4 windows x86

    75c6f370cabddd042ee01794724820a7


    Headers

    Imports

    Sections

  • dnssec-keygen.ilk
  • dnssec-revoke.exe
    .exe windows:4 windows x86

    88d1cd1e860da7b70b1b2085d8e63688


    Headers

    Imports

    Sections

  • dnssec-revoke.ilk
  • dnssec-settime.exe
    .exe windows:4 windows x86

    954f3bd622822308df23827957477ef4


    Headers

    Imports

    Sections

  • dnssec-settime.ilk
  • dnssec-signzone.exe
    .exe windows:4 windows x86

    45d501dbaf5863301e0dff42f17c9106


    Headers

    Imports

    Sections

  • dnssec-signzone.ilk
  • dnssec-verify.exe
    .exe windows:4 windows x86

    09f1243c88c13d218ee12d4c03a8f9a5


    Headers

    Imports

    Sections

  • dnssec-verify.ilk
  • genrandom.exe
    .exe windows:4 windows x86

    2f5844dc70456cfc379573c38020410d


    Headers

    Imports

    Sections

  • genrandom.ilk
  • host.exe
    .exe windows:4 windows x86

    9d460ceb6672d879f4d51c713dcb52e9


    Headers

    Imports

    Sections

  • host.ilk
  • isc-hmac-fixup.exe
    .exe windows:4 windows x86

    68a6029319946dd30b1854d94b10b528


    Headers

    Imports

    Sections

  • isc-hmac-fixup.ilk
  • libbind9.dll
    .dll windows:4 windows x86

    b00c8ce62f27ceb199e5220e1d566a39


    Headers

    Imports

    Exports

    Sections

  • libbind9.ilk
  • libdns.dll
    .dll windows:4 windows x86

    71e6d7f830c12d7cd835b99c4ac367a9


    Headers

    Imports

    Exports

    Sections

  • libdns.ilk
  • libeay32.dll
    .dll windows:4 windows x86

    6b6e04e6523bca7e0365b873c68b020d


    Headers

    Imports

    Exports

    Sections

  • libisc.dll
    .dll windows:4 windows x86

    f78e218309838d513bd641aea0245064


    Headers

    Imports

    Exports

    Sections

  • libisc.ilk
  • libisccc.dll
    .dll windows:4 windows x86

    797efd4e4f58668b18c9009af580256a


    Headers

    Imports

    Exports

    Sections

  • libisccc.ilk
  • libisccfg.dll
    .dll windows:4 windows x86

    fbe06dae67cd9e347cfca43a377860b2


    Headers

    Imports

    Exports

    Sections

  • libisccfg.ilk
  • liblwres.dll
    .dll windows:4 windows x86

    9a30c7c3f20d8a0c1d779ed3da246b7d


    Headers

    Imports

    Exports

    Sections

  • liblwres.ilk
  • libxml2.dll
    .dll windows:4 windows x86

    466104099f7246f04745eb23e99c006e


    Headers

    Imports

    Exports

    Sections

  • named-checkconf.exe
    .exe windows:4 windows x86

    36cd6085bb2a2fba4f7a4d94325604a2


    Headers

    Imports

    Sections

  • named-checkconf.ilk
  • named-checkzone.exe
    .exe windows:4 windows x86

    35289c851d705f19a4920e08f1d8b6ef


    Headers

    Imports

    Sections

  • named-checkzone.ilk
  • named-compilezone.exe
    .exe windows:4 windows x86

    35289c851d705f19a4920e08f1d8b6ef


    Headers

    Imports

    Sections

  • named-compilezone.ilk
  • named-journalprint.exe
    .exe windows:4 windows x86

    c6e3231ba7f4dac073902a0e5f3e8fbe


    Headers

    Imports

    Sections

  • named-journalprint.ilk
  • named.exe
    .exe windows:4 windows x86

    66b4d040d6e3c636a710de4faf6e7f39


    Headers

    Imports

    Sections

  • named.ilk
  • nsec3hash.exe
    .exe windows:4 windows x86

    293d53ba9d2da5e9fbced760d515ced8


    Headers

    Imports

    Sections

  • nsec3hash.ilk
  • nslookup.exe
    .exe windows:4 windows x86

    1f33b23d6219657587a9ea2085288640


    Headers

    Imports

    Sections

  • nslookup.ilk
  • nsupdate.exe
    .exe windows:4 windows x86

    761c80590c37332e5a5bf62d6bbfccc6


    Headers

    Imports

    Sections

  • nsupdate.ilk
  • rndc-confgen.exe
    .exe windows:4 windows x86

    9ac2fb0ca4c33f352bad79ac1da95c7d


    Headers

    Imports

    Sections

  • rndc-confgen.ilk
  • rndc.exe
    .exe windows:4 windows x86

    323fd8420a8968782e45bd693a1522e7


    Headers

    Imports

    Sections

  • rndc.ilk
  • vcredist_x86.exe
    .exe windows:5 windows x86

    0ebb3c09b06b1666d307952e824c8697


    Code Sign

    Headers

    Imports

    Sections