502f7be59a7abf48fa891add1bf1c8656d5dcacac741b5a3d7c30f889d4fa470

Sharing

Copy URL Twitter E-mail

General

Target

16e8a001ccae958b6683d16fae598d12a1c6ab0a7a098c2dcb2a31aa412238e5.zip.zip
Size

12.6MB
Sample

231107-r1e2wsaa8v
MD5

ba08d7c60501ad4190531ec73fdc9abe
SHA1

8debc1e07b6ce85b583cb6e25684152587736dcc
SHA256

502f7be59a7abf48fa891add1bf1c8656d5dcacac741b5a3d7c30f889d4fa470
SHA512

b1adeb91c99acbd7de511f8a2156f480e03121b04b71304ee3079ee75909c3d3ac9e3f44ce991465a7c95be0b0229d327246dcf93871c0b0ec2709d843fcba43
SSDEEP

393216:rUoO+FlEI0kJ9m61/OKzH9QHhzjdW50M5S:rUodrR3t8hzjObS

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  25dd768bae48aea16f0f6b23ad487e4a
- SHA1
  
  952764aac47e5e41e5281235fb7a8d21c7dca03d
- SHA256
  
  01e0f77f8d826fd13023fa800b5aef3dd755e45cd339f4744ada62c3bb79f2dd
- SHA512
  
  ac7d9350ba018079083348f457101bb14ab401c7047d706ea0f9251e5baffc8870528f4909499b6a494706089d9180b5d410c1e8355b8c6f6f68a4249ef0fc34
- SSDEEP
  
  24576:1k/ylUMrug6Jw1gZZxr3tLPw2a+q4Gu5GKnzM3TSbX/B:12yx2my7ftlnl
Score

1^/10
behavioral1 behavioral2
- Target
  
  arpaname.exe
- Size
  
  40KB
- MD5
  
  0ff3babbe478a43f2d67963b4ca04a57
- SHA1
  
  aa5c7ab3cdcb5117eb0e808f774245526dab47a3
- SHA256
  
  9e250674d53d130e24b9a3c3295bce8104b46f81732a45f05d174ed986e19015
- SHA512
  
  c214d6ae4bd0227d8ca65c3932dcabc425bd066ce11c7105c571fda8c8e91f8adf3fd77c3837017d19a16a0bf5083958a9278a321e306b225b6659385fe961ac
- SSDEEP
  
  384:YWsaAWdbuqBOziF9FmP7NVv6vxwUbM0lRcs6oP:YWsrChBOzK94hVCmU/QWP
Score

1^/10
behavioral3 behavioral4
- Target
  
  bindevt.dll
- Size
  
  448KB
- MD5
  
  3368bf6088802a6fe4a74dd7a1bb39d9
- SHA1
  
  5681cf96686125308bafa1396e7fee6aec225504
- SHA256
  
  fe254dc5a4e025a0d7d95844dd452ac9c3cbbe78edfd8a4cd12d7331dd5567c4
- SHA512
  
  a29a89f98ee2df04a71cb204bcc0e75ef3890e3c45dfe691f0295a9aefaeee50f1802776bb5e7c6e843d1cfe87a242eab067d107323a650d5bbe1050ad9bb308
- SSDEEP
  
  6144:rLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYkN2dHiVXj:rLKo9PLecFTsU9m9E73FSRsnb6P8Ij
Score

1^/10
behavioral5 behavioral6
- Target
  
  ddns-confgen.exe
- Size
  
  48KB
- MD5
  
  49f7b31082731883da5e96bd152bf08b
- SHA1
  
  8185c620152ed346bddf16170dceda650fec1b67
- SHA256
  
  6e453859564dce841fbff79f3d621fafc23f10b947278d1298b193017f3d324f
- SHA512
  
  4effc57c6a96b7adc87e600397badcd06725304b4a280609372c4ec28bd9df13d3a95e6290d62b512d69ba223998cdf3095f750af86f75631350d6da0e12a639
- SSDEEP
  
  768:CzLQRA7J5CzLHG4zW1LnmvboAjmUlXP4ZwP:CQsubm4bfjmUlX9
Score

1^/10
behavioral7 behavioral8
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  61c439d56f81012e3b41a3f60e80c445
- SHA1
  
  a86536549cc473f1d6e0bb5db9773df2c88aa23d
- SHA256
  
  55dd315b2f6137d5e9ac62153d1d533c8d2ef666f3aa14428e313c04292d386d
- SHA512
  
  9e0ab5c3c974ae9fcc1d031c43efbbc6d0c0cbad141296ebdac2e5a89c7321e3dfb2b6208d33583fc275a41742389a8c6295c05349af231dab855f640cee2b2f
- SSDEEP
  
  1536:RNnnOIs18NJ+qSqFn5LkGFnJSFZWhNHsC4V/ObxD3imUH4:Rn5J+qdFRJFnJSF0hsV/ObxD3imUH
Score

1^/10
behavioral10 behavioral9
- Target
  
  dnssec-dsfromkey.exe
- Size
  
  64KB
- MD5
  
  9a72bf641e0111b87e26798688e29d5d
- SHA1
  
  41412571ec108a76deb5dc0ff3188aa9ea75e917
- SHA256
  
  e40d24798e8011657a2d91ba39ce250cf54b2a46da3b1f4e874c4fd4ded9961d
- SHA512
  
  bb0729d4a91b6514cb4ad8dc5cffdf2ae71660911d4e21c0fda68421b3586e42d7614f65263706c3502252e18e7303c6b296fe7f159d28cecbb774d52d22b755
- SSDEEP
  
  768:jERL0c1QkOpap9wgCcyyUEYupYiz4lpbDwBkmUeIMwP:BkK0WqyyUaqlpbDmkmUeS
Score

1^/10
behavioral11 behavioral12
- Target
  
  dnssec-keyfromlabel.exe
- Size
  
  64KB
- MD5
  
  840d8f2aeb4f46bbf918f42bd44f83cf
- SHA1
  
  03c49b90c81a016f33c5cfef6901c305220f5312
- SHA256
  
  b4f35793e58807abac775e353b221444f85dca5265600d9a7865860dc1ba9d14
- SHA512
  
  5d5ffb8b0101d9f7dcf505cb3a86159108c21425bdecd7a6342a817704aab54bf97c2a0a2d943eca8b89eb730c5f7c7a4dbaa9120bb9dce5b552d80643a26762
- SSDEEP
  
  768:NGIH99pvpgNokh4yIzUAFVWzjheuwb2tWmUd/wP:NG6XpgN5h4yIyheuwPmUdI
Score

1^/10
behavioral13 behavioral14
- Target
  
  dnssec-keygen.exe
- Size
  
  72KB
- MD5
  
  9d87f69ab4727e3447c97c2767f67e5f
- SHA1
  
  80772d36c13db58813b12da0184466664453253c
- SHA256
  
  51312c5dec71f7bb74c6b48bad54cece28143efe1284f140ef153ec8aa2f9d0c
- SHA512
  
  dc5d43a538e6bc35dc3913fd2fcf176e51621808fac8729c1e7b741d269a9a5c5f390479459410f09af7d6f2b1ec3aa41da2ad048f90a48a384b66911ea60aed
- SSDEEP
  
  768:7UO+HUkRvRrWpJ+ZbDQum4BzI/Zxf1/1rmUwoz6zmwP:ghHFYAZbXe/ZB1JmUwoz6z3
Score

1^/10
behavioral15 behavioral16
- Target
  
  dnssec-revoke.exe
- Size
  
  60KB
- MD5
  
  2e3a800954386578b5c66bcea34f58b4
- SHA1
  
  94fede502a3df74412a4b8e6c504352582519068
- SHA256
  
  a7fa098f1dc2adb3e5f1aee1bbfffb33fc2945edb37e974a148e95e25ba5b79d
- SHA512
  
  cb4812c5620938471428479dc49f97e293a9939a47e93033d5ca19cb4521d92ba8616e8536d5284f51dfa835eddb285b79bd698d2b3bc7373e501d40c6b49d98
- SSDEEP
  
  384:VAgHSEKHXO0Gmfhbs69sy6hzCnQvrZ2me+AgZ6vxwU5gRH2pYbsy6oP:SgMX08s6SyQzHrkj7mUCH2VwP
Score

1^/10
behavioral17 behavioral18
- Target
  
  dnssec-settime.exe
- Size
  
  60KB
- MD5
  
  d54470957733af93e3f0458dce3aba22
- SHA1
  
  4e3af86af549027fe1ce7ab5329a9948bc277469
- SHA256
  
  38e2266edba7622628f68e8160948650355990ac71f555e03d831aeb311d5e58
- SHA512
  
  89c809bf49b42c804efbbdacc4fc5c54d8a5d1075fbcdeaf1293e43fedc5c99649e3e292bc462642b66a1634fd9c7b5b46417f6fcde8977e2b21f508602af449
- SSDEEP
  
  384:+PDmZDtZR3v9lpxqECDB8LK8xfvSBl9kh7oRhze8pc2ax72z2Wja6vxwU5HDwUaK:+az9keLKA89k1onzTf68mU9SwP
Score

1^/10
behavioral19 behavioral20
- Target
  
  dnssec-signzone.exe
- Size
  
  132KB
- MD5
  
  6a5cff57cb4d295b441e4424f63c98e0
- SHA1
  
  8634c0236b3e729a4d81dd15581695d2cabe8863
- SHA256
  
  ca655af98f9108020af599496c4476229c529f7c29415c5d528806afc0fa4efb
- SHA512
  
  d02f8c6f0f3acca3bfbc18354025d4f5d17b38b0e17867c759e4e25062ea017b399f4bd6d91291d9ca2af3b96148c744f49f4e4692242fa57e30a20146d77117
- SSDEEP
  
  1536:yROvWv8nIzz7G+FyxOt92MrCwtQ0GO9f5zUbeAis+Dyw4/AyGU57L3G:yRYtpU9rL60Nfzeis+Dyw4/AyGU57L
Score

1^/10
behavioral21 behavioral22
- Target
  
  genrandom.exe
- Size
  
  40KB
- MD5
  
  fa5a744b97dad31576e915edd20e72b9
- SHA1
  
  cd1e7e7bb0b4388d3db86466fc1cbd2e3b3b0204
- SHA256
  
  0d971cea0701eefe46b1a0e81c0e33673708b231ec6b7706f0bf6d36df615ed2
- SHA512
  
  eb4f897464cb586c295bad4dd5bf77f293ee5fd585001bd40a6d25417d7f19c1bbf6b211373ccc7e589fb73ed3cd9fb393a97e07e6279bdb4a5a7540863bfe96
- SSDEEP
  
  384:TSuHRskrQsU5Ho04zu75yenQbywAWPxwUbg4KFeK6dP:Tj2Z5HofzG55nwAWGUXjNP
Score

1^/10
behavioral23 behavioral24
- Target
  
  host.exe
- Size
  
  120KB
- MD5
  
  3b29a9189b11866e4bc1bf1be1176225
- SHA1
  
  6dac5efae8d2b125f6c08a48e23c231c12c9736e
- SHA256
  
  a097e2d5b43554f215f54c06d36e77765acd81eeea69f937f6d6d592ed776b7e
- SHA512
  
  cdbb51a24bcf6095a8f68a81a606cf6f74b374f83f62a23c2a7bcf8c4bdb2a6147f2773021544b96e0c89463aff011ad9006119da7f01011f1a7dba5277e94c0
- SSDEEP
  
  3072:qDBGf0cxYapPoM84GreNRbxDX4GUW+IC:qqxYaVoM84MK3DX4P
Score

1^/10
behavioral25 behavioral26
- Target
  
  isc-hmac-fixup.exe
- Size
  
  40KB
- MD5
  
  a49f1335797fd2c1af74b5170c0c4965
- SHA1
  
  0d220121f55517e563a1c0094d31a3d90044641e
- SHA256
  
  44f2b38ba7b924f55ddcfbcd56313942b79a4df88e8b8b512ccf7ff85e08816b
- SHA512
  
  8639df9733cea3fa344babd7bf15e56eec381089465bac84b82a0e0f86f2ceced64fdcf70cf6451ac8b3bac4c1633123372578b0a7a96a9221bc2d6be966b3e6
- SSDEEP
  
  384:EZQ/K/tLJzr8YPfWjBuF6vxwUbTwYzR+s6oP:E0ctLJz/udmUIYIWP
Score

1^/10
behavioral27 behavioral28
- Target
  
  libbind9.dll
- Size
  
  96KB
- MD5
  
  5050dbefcd1900bfc5e6a57d35eb8536
- SHA1
  
  6dfca81594a285c856a90ca03d3c2eff9be443b2
- SHA256
  
  a921e8dad5c31e7e544e5356bc0ec3d8332e70eda793c0b1d7bed0cffef91f51
- SHA512
  
  db79aaed96bc31e053738d3220d41306f6c1cceb289d3d2600def3532205de988b2022ae26deb54582e1ec2a5321d2a9d03a404f9b0861cfb4d27b51b94a15e8
- SSDEEP
  
  768:E9bdhtDheiWmXrv5+qaAYAx+zbwzQXC1KhzxywwThmUeKVEGPMH:+JDDUmXD5+qMAxqwzQSaywwThmUeHG
Score

1^/10
behavioral29 behavioral30
- Target
  
  libdns.dll
- Size
  
  2.2MB
- MD5
  
  f989c514c028867cc1dec79f51e169d6
- SHA1
  
  7a8b5450e2989cb8b475e9015e9f8a79e2bc80f3
- SHA256
  
  7500a80c7d3c5e31ffb41aba85dcb4c338c07615245e39c4d0de9d18e97246bf
- SHA512
  
  d0bc1982d3e9e98ce1ea1c05e647e340d25c3d61a265ef2ed24b638cfe4df7504dabaea285ac11514ee4b2ce79786fb340ab0f98495679ae433ea1bbd04cd943
- SSDEEP
  
  24576:BsnJBkK9L0Q51YheGCagiwuoXIwRkOWRm6F+NvCho0uq7V4YKbct5ZJGAwAdKiQZ:B893jYtEuoqCizahPzfsPjqX6e2rE
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32