2196592d9206a2cb569f62c5b33e8054949bdcea90fd01cbd7174d7954f3a82a

Sharing

Copy URL

Twitter E-mail

General

Target

614bd042dd616bb90d5121b0c8aa56c12bf83ca139ab8995307c08e2ba74a80d.zip.zip
Size

10.8MB
Sample

231107-r4jt9aca23
MD5

4c0917889fc39e756667788d645d28de
SHA1

3a00211044110bac6f59e4021ebd3ae146680cef
SHA256

2196592d9206a2cb569f62c5b33e8054949bdcea90fd01cbd7174d7954f3a82a
SHA512

9a82da81a8b2f93b1065dea798904e2765e97314ea1d007f2657b60c613339673f7f84dd94dc2a621269c225e8d78a411d4938b0efc278bf8e90440d1bc06399
SSDEEP

196608:NNAC/SRmI4gNiSclKhCKno+JVnDO2dDOnLLP/S6DIJvPQH9zL2wVMxT/uo:NNAC/2mJgNiSQ+JVDvOf/N79GwKxTmo

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  c277aa763bdaaf4852545f58cf56cafe
- SHA1
  
  0a527e85727b7ca25b87647c79faf8ff585c832a
- SHA256
  
  83f60484ab17e8eac88b69bdcf984e5ca9875496a0c510a4c4eb482320a041f2
- SHA512
  
  155ce731948bf10ed19080537e990065ce8bc002400102f8e61f347e305ea1510998c7147f5146d93bb70e6f4f455992b7fdff446365e457bd215f508250fd2f
- SSDEEP
  
  24576:10xX5/N9+CafUN/zqAfl1LmaM0Je5NGiL8WAgVyFe:1wBN9mJ0uiCs
Score

1^/10
behavioral1 behavioral2
- Target
  
  bindevt.dll
- Size
  
  444KB
- MD5
  
  784249e94f414020282807fde1bd8db7
- SHA1
  
  6bd2374fe795706a0f62e99ebac2468b6a2f34f0
- SHA256
  
  6636fa79c3fdc8f36bc76a6cda0d42ae49b4506ebf81120479874a2240202204
- SHA512
  
  0d494a61a5c8f6e71e4b1b5eac20c4dce58e886a813ac679aa76afecb7cd3511900fdc48161c4b6ec69d03e34850b0bde35b208edcaf5b08f1c45d8d68c6c68a
- SSDEEP
  
  6144:8u1UmaiErc/PPwvgqHlya25E0pXI80x5eqnI/RIl0z8fBafI:J1dPuc/3WgqH0rpXI80jIyl0+B
Score

1^/10
behavioral3 behavioral4
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  869efda310f86d2a6cabf7e7e0123532
- SHA1
  
  eb9a7b7ecd1edce9c42fdf7ee3f95965dbf87c54
- SHA256
  
  c53ba1fcec2e60567896227714044984037c9eea0c99cf4a779be804a46e312f
- SHA512
  
  cd7f7aac2d68d79ecf0e97cae80296c632dde1eac0d256c05818bb9381d28d654f134fcedcc1451160305d2817d3ad0ebdce5f4c50445eb39f9769273fd94886
- SSDEEP
  
  1536:nXxtRai1F/FN+CMhRQLfeiGCdFRXyemcmWxDa7LUTsS:BfL1F/FN+n/Q7eiGCBCemcmWxDa7LUT
Score

1^/10
behavioral5 behavioral6
- Target
  
  dnssec-keygen.exe
- Size
  
  60KB
- MD5
  
  41d085551f486b3e7b1cd7587d44796c
- SHA1
  
  09e3d8213cd530b92cc4815dd2eef33e862dbb58
- SHA256
  
  3d6f587e267a86736e1820ca87a5c0984bbde1c0c278eef06e2acf8474b67ee0
- SHA512
  
  8aa651caf3eccbeb10a46615b1eb7ef70534c2a55407909e6d902903ef3bb8c1b42f6a31826660170b9f03a7aa21dcac9174d58c854cdc1487968b661aa1b6d2
- SSDEEP
  
  384:9aJCyOycdwR1BD0D6qWBjLC8P/R5RwpIZPtZVEiOr6YBm1m2tbfv6vxFU5NkLzOW:QEyLcdwR1BfXRXw0PdEp/E1ILUwdpP
Score

1^/10
behavioral7 behavioral8
- Target
  
  dnssec-signzone.exe
- Size
  
  96KB
- MD5
  
  0fd4584c530fbd3b38148cdcbe5af576
- SHA1
  
  bbc7eddba34ded3bb1608ab7a11846a6fae49741
- SHA256
  
  8f6b94374e5fdce5e7f23fd2b07e675d2692b139092b2d8ffa008a1fba7c27dd
- SHA512
  
  c9f00fce615c2adf6e569494c1bc563900ad1c27221e96258472e4be0b7588aefdbc22a40a763d8756264084e2474d036d9846a70d19bc6fb3d96b34cd2e2e22
- SSDEEP
  
  1536:j5fO0ThYMix+fuUPO2SdmbKHndhVrUc0Ja:j1DznjO2SdmbKHndhVrUcw
Score

1^/10
behavioral10 behavioral9
- Target
  
  host.exe
- Size
  
  120KB
- MD5
  
  1c3c4813ac5e3d43e7524da1636808e0
- SHA1
  
  ec22d26cac702a2e647fb00a92f95d28ffb9311b
- SHA256
  
  41cb3c099224e38ee3ce2285bd069f54abacc332a468e7ec54a0dbc41cb4bf7f
- SHA512
  
  b52606e56d66be243df32599e1ba39a527b623c5afdda374aa9d8e972bc7baa060a16b71d2b44086bb88b5001f9909e617ab22bc2593a7ca812f2d4645fbb404
- SSDEEP
  
  1536:OfL6PHnXEfiz4NRLLSLh11hybHpZ6ZIeqa/WxDaVrUsFu:MGn0az4NpSLJhybJgZIla/WxDaVrUs
Score

1^/10
behavioral11 behavioral12
- Target
  
  libbind9.dll
- Size
  
  88KB
- MD5
  
  e8d9b6e2e8b32b9985f0c627ca83886b
- SHA1
  
  c000d44d36434b66ab35beabcde730c8063954ca
- SHA256
  
  dddfa0212fd2132ec3dcd5a8299aadaf65b1e14f52c54f0ab4c57242826ae0c1
- SHA512
  
  c9f143b939f29cd92540b4b5e838151df567114fc606cbf98e776320117ad3ddd6fe8885c7f2dce9c19b502f9f2d1a3fa54126380f7ea2b5f9dfdace214716a0
- SSDEEP
  
  1536:G6seL384WkT1x3nKDxrsV4h9w9LU16uiK:Gdez8lkTLXoW4hwLU1Fi
Score

1^/10
behavioral13 behavioral14
- Target
  
  libdns.dll
- Size
  
  2.0MB
- MD5
  
  c17367e39863c447258d467132ded88c
- SHA1
  
  cbe5c75f020935e0c08dff18e38cf7d5c0af0825
- SHA256
  
  e1feaae1f54c4a5a6930f387b0023637564c2184392ce1c82890d3d8e7937aeb
- SHA512
  
  0c158bce2123a0b55b16d74cd408daa42a82e2e00b4f4c205518d61f8776c1a7b42711fcb4e008eadb4048e008f83b3138e98be546580cee6b88860119c25748
- SSDEEP
  
  24576:YnhH3l9P2mMzkjHdfojUgtgD9tC2s7SmM8FrqV9ABrAPNullvb0xrvY6ZYhBzfsM:Y1YzkG0tYRhBzfsPXvmu
Score

1^/10
behavioral15 behavioral16
- Target
  
  libeay32.dll
- Size
  
  1008KB
- MD5
  
  8f7e5dfc786b6c5e9fd4e5a51b7988d1
- SHA1
  
  55a000865cbdf2b2fc1a2c62f02315747c4d4667
- SHA256
  
  8d4bf47897c4c4c8726325108e752636b6be0a83068e3a89dbfae72b41bf4633
- SHA512
  
  72faf705746dc9a061087aaf0608cf950b373a1d0a2d4f1cf07dd200903d92a2169807c357dc0257dafb5dcbfa0a38d5709bcb9d8ecaf662636f35fd6abf206b
- SSDEEP
  
  24576:vXsy8xDN046rTIXbhMnXe0rpBjfmaLsubI:vXq2dTmMlrplmYsMI
Score

1^/10
behavioral17 behavioral18
- Target
  
  libisc.dll
- Size
  
  480KB
- MD5
  
  21cb181ab711adfcddf105f7fee70d6b
- SHA1
  
  5f816637062217bbe03197449743e4d325b880d3
- SHA256
  
  66693f0bb5b69f5ef5cbf89c2c61e8a39639be2ed2c3672e674dd8940961abac
- SHA512
  
  57eba0e8ad060b41f6d6e9bf4de9f53e436e4bc088175149b6aa6399dbe8e30659a2a81d6bef52fe6bd8bb7fcae5aecc127d8149244494f80642915ebf66927a
- SSDEEP
  
  12288:oWm1lx8nhlOSAwUE7rTb+6W43Z7Sg8y/NWxLtI5HkQ:olilOxgL/sVu5x
Score

1^/10
behavioral19 behavioral20
- Target
  
  libisccc.dll
- Size
  
  72KB
- MD5
  
  7cb3338dd3b47fc393ee9510a771126e
- SHA1
  
  6e668c2446b45bfedbc38710ecbe69c883e55b6c
- SHA256
  
  dae470a9efd1347f28e59b0ce39375b810560bbece0148e987cc6f7a5389ef2f
- SHA512
  
  7324f50838acbf92cc8cdee884e43b0f99dc0e218a9ea6b3da7ec4ead0e1bbefaa293ad8555faf6ca621498fed7e912d8324c7e495d17c1856ab543fbd5ee904
- SSDEEP
  
  1536:tAI9perMhcba5PeSN3yCJPtcJHcq+PqPoqdS5qPq5FfZrwKnrUsrjK:JWrMiba5PeSFyCJPtcFc/Paor5QwRrwe
Score

1^/10
behavioral21 behavioral22
- Target
  
  libisccfg.dll
- Size
  
  116KB
- MD5
  
  f75350e85d0ec97220e662d29d216edf
- SHA1
  
  035a24f4d5d65d5011daf4c7406ebcd8248c98d2
- SHA256
  
  3ab5668fb17d2a4fdc1f11ce24c41c0fa97295468a77c04d52723699707abe20
- SHA512
  
  9293a7b4146f60626ac05cbe52fc6d7805f69b7d80ba41f102d948c924748831f967655eba21ba85664482c6a42e546e147e407861dc9e4b7406a34a6464a68b
- SSDEEP
  
  1536:5SQYZt7/i1pUfesCgLA60t/w6nkVYKXsarUYZKTlT9y:0QYZt7q1pUFLCw6nkVY8rUYZGT9
Score

1^/10
behavioral23 behavioral24
- Target
  
  liblwres.dll
- Size
  
  128KB
- MD5
  
  876389b3c8642ffea6d8ba1ff94033fa
- SHA1
  
  a60f2194acf7456ab612f9253c959837837de6a6
- SHA256
  
  f5a4b341d5a1910eb96b7af8e1d4252abf312d7ab8ee2baf5852b9304cdd8d5e
- SHA512
  
  78d3dc964928ae898aad5ff3a5118d906099dfc405e5d278a067abd9ba27609b928cd8f49969bc277a4bc5290dcbd2f1b80413a5cf84d06882f0f0985dfb0e71
- SSDEEP
  
  3072:gK5erMqsJBqI7UcbXeZRI2kk87DuXiAf2Qpa5ELUni:gh4qsJBqI7UzlD
Score

1^/10
behavioral25 behavioral26
- Target
  
  named-checkconf.exe
- Size
  
  56KB
- MD5
  
  917743b3e4b259b4fb9efab04be68971
- SHA1
  
  bcf9c59cafd94139b78be95964c21db0f8cb0059
- SHA256
  
  a6c6793b9d34b1e194bf55a80f23679d73dabc522d711c671c9a3f0bce11851f
- SHA512
  
  bbdf9568cd94cb4b2e595dfbcaf292ec9b3611dda5a579c30c81c9229b758ec02ed85c2d24b0efc52ec057abb11720f04f88e361ac4be164f564641a863fad04
- SSDEEP
  
  384:hvXnQwvs4QwpmMsN3mSYLn+ot1SSh9DA/iE+MrCenmpPtZq8lGYsu0lSK+JFvTPB:hvK8nviCempPe+GJPIRrU+6zuZP
Score

1^/10
behavioral27 behavioral28
- Target
  
  named-checkzone.exe
- Size
  
  56KB
- MD5
  
  1d4ef9289031226efae0ce31339f2020
- SHA1
  
  131cae10a0ceedef8902911bbdfdf094ccd4ea9e
- SHA256
  
  55f223eb2b8ebac3842888520c4a184f54f5053d884e01762f2a8f4d412b7806
- SHA512
  
  aedb77d70b9df20af8084785a64237befab341e19cacb28b09f987f5309e515078b37be9a758bee631eab54fa60da7703f1e8515c6ac7291cc7fc7a716805908
- SSDEEP
  
  384:Afn6Ev6NaYWVESHq1bkPALKm7axlrQNsDx1PxNo1+s51BfJ6tgEFwPxFUb5g22Q6:Af96NaYWVpH1lgsDx1Ps1DVrUq22vZP
Score

1^/10
behavioral29 behavioral30
- Target
  
  named-compilezone.exe
- Size
  
  56KB
- MD5
  
  1d4ef9289031226efae0ce31339f2020
- SHA1
  
  131cae10a0ceedef8902911bbdfdf094ccd4ea9e
- SHA256
  
  55f223eb2b8ebac3842888520c4a184f54f5053d884e01762f2a8f4d412b7806
- SHA512
  
  aedb77d70b9df20af8084785a64237befab341e19cacb28b09f987f5309e515078b37be9a758bee631eab54fa60da7703f1e8515c6ac7291cc7fc7a716805908
- SSDEEP
  
  384:Afn6Ev6NaYWVESHq1bkPALKm7axlrQNsDx1PxNo1+s51BfJ6tgEFwPxFUb5g22Q6:Af96NaYWVpH1lgsDx1Ps1DVrUq22vZP
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32