Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

dig.exe

windows10-2004-x64

dnssec-keygen.exe

windows7-x64

dnssec-keygen.exe

windows10-2004-x64

dnssec-signzone.exe

windows7-x64

dnssec-signzone.exe

windows10-2004-x64

host.exe

windows7-x64

host.exe

windows10-2004-x64

libbind9.dll

windows7-x64

1

libbind9.dll

windows10-2004-x64

1

libdns.dll

windows7-x64

1

libdns.dll

windows10-2004-x64

1

libeay32.dll

windows7-x64

1

libeay32.dll

windows10-2004-x64

1

libisc.dll

windows7-x64

1

libisc.dll

windows10-2004-x64

1

libisccc.dll

windows7-x64

1

libisccc.dll

windows10-2004-x64

1

libisccfg.dll

windows7-x64

1

libisccfg.dll

windows10-2004-x64

1

liblwres.dll

windows7-x64

1

liblwres.dll

windows10-2004-x64

1

named-checkconf.exe

windows7-x64

named-checkconf.exe

windows10-2004-x64

named-checkzone.exe

windows7-x64

named-checkzone.exe

windows10-2004-x64

named-compilezone.exe

windows7-x64

named-compilezone.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    614bd042dd616bb90d5121b0c8aa56c12bf83ca139ab8995307c08e2ba74a80d.zip.zip

  • Size

    10.8MB

  • Sample

    231107-r4jt9aca23

  • MD5

    4c0917889fc39e756667788d645d28de

  • SHA1

    3a00211044110bac6f59e4021ebd3ae146680cef

  • SHA256

    2196592d9206a2cb569f62c5b33e8054949bdcea90fd01cbd7174d7954f3a82a

  • SHA512

    9a82da81a8b2f93b1065dea798904e2765e97314ea1d007f2657b60c613339673f7f84dd94dc2a621269c225e8d78a411d4938b0efc278bf8e90440d1bc06399

  • SSDEEP

    196608:NNAC/SRmI4gNiSclKhCKno+JVnDO2dDOnLLP/S6DIJvPQH9zL2wVMxT/uo:NNAC/2mJgNiSQ+JVDvOf/N79GwKxTmo

Score
3/10

Malware Config

Targets

    • Target

      BINDInstall.exe

    • Size

      2.1MB

    • MD5

      c277aa763bdaaf4852545f58cf56cafe

    • SHA1

      0a527e85727b7ca25b87647c79faf8ff585c832a

    • SHA256

      83f60484ab17e8eac88b69bdcf984e5ca9875496a0c510a4c4eb482320a041f2

    • SHA512

      155ce731948bf10ed19080537e990065ce8bc002400102f8e61f347e305ea1510998c7147f5146d93bb70e6f4f455992b7fdff446365e457bd215f508250fd2f

    • SSDEEP

      24576:10xX5/N9+CafUN/zqAfl1LmaM0Je5NGiL8WAgVyFe:1wBN9mJ0uiCs

    Score
    1/10
    behavioral1behavioral2

    • Target

      bindevt.dll

    • Size

      444KB

    • MD5

      784249e94f414020282807fde1bd8db7

    • SHA1

      6bd2374fe795706a0f62e99ebac2468b6a2f34f0

    • SHA256

      6636fa79c3fdc8f36bc76a6cda0d42ae49b4506ebf81120479874a2240202204

    • SHA512

      0d494a61a5c8f6e71e4b1b5eac20c4dce58e886a813ac679aa76afecb7cd3511900fdc48161c4b6ec69d03e34850b0bde35b208edcaf5b08f1c45d8d68c6c68a

    • SSDEEP

      6144:8u1UmaiErc/PPwvgqHlya25E0pXI80x5eqnI/RIl0z8fBafI:J1dPuc/3WgqH0rpXI80jIyl0+B

    Score
    1/10
    behavioral3behavioral4

    • Target

      dig.exe

    • Size

      140KB

    • MD5

      869efda310f86d2a6cabf7e7e0123532

    • SHA1

      eb9a7b7ecd1edce9c42fdf7ee3f95965dbf87c54

    • SHA256

      c53ba1fcec2e60567896227714044984037c9eea0c99cf4a779be804a46e312f

    • SHA512

      cd7f7aac2d68d79ecf0e97cae80296c632dde1eac0d256c05818bb9381d28d654f134fcedcc1451160305d2817d3ad0ebdce5f4c50445eb39f9769273fd94886

    • SSDEEP

      1536:nXxtRai1F/FN+CMhRQLfeiGCdFRXyemcmWxDa7LUTsS:BfL1F/FN+n/Q7eiGCBCemcmWxDa7LUT

    Score
    1/10
    behavioral5behavioral6

    • Target

      dnssec-keygen.exe

    • Size

      60KB

    • MD5

      41d085551f486b3e7b1cd7587d44796c

    • SHA1

      09e3d8213cd530b92cc4815dd2eef33e862dbb58

    • SHA256

      3d6f587e267a86736e1820ca87a5c0984bbde1c0c278eef06e2acf8474b67ee0

    • SHA512

      8aa651caf3eccbeb10a46615b1eb7ef70534c2a55407909e6d902903ef3bb8c1b42f6a31826660170b9f03a7aa21dcac9174d58c854cdc1487968b661aa1b6d2

    • SSDEEP

      384:9aJCyOycdwR1BD0D6qWBjLC8P/R5RwpIZPtZVEiOr6YBm1m2tbfv6vxFU5NkLzOW:QEyLcdwR1BfXRXw0PdEp/E1ILUwdpP

    Score
    1/10
    behavioral7behavioral8

    • Target

      dnssec-signzone.exe

    • Size

      96KB

    • MD5

      0fd4584c530fbd3b38148cdcbe5af576

    • SHA1

      bbc7eddba34ded3bb1608ab7a11846a6fae49741

    • SHA256

      8f6b94374e5fdce5e7f23fd2b07e675d2692b139092b2d8ffa008a1fba7c27dd

    • SHA512

      c9f00fce615c2adf6e569494c1bc563900ad1c27221e96258472e4be0b7588aefdbc22a40a763d8756264084e2474d036d9846a70d19bc6fb3d96b34cd2e2e22

    • SSDEEP

      1536:j5fO0ThYMix+fuUPO2SdmbKHndhVrUc0Ja:j1DznjO2SdmbKHndhVrUcw

    Score
    1/10
    behavioral10behavioral9

    • Target

      host.exe

    • Size

      120KB

    • MD5

      1c3c4813ac5e3d43e7524da1636808e0

    • SHA1

      ec22d26cac702a2e647fb00a92f95d28ffb9311b

    • SHA256

      41cb3c099224e38ee3ce2285bd069f54abacc332a468e7ec54a0dbc41cb4bf7f

    • SHA512

      b52606e56d66be243df32599e1ba39a527b623c5afdda374aa9d8e972bc7baa060a16b71d2b44086bb88b5001f9909e617ab22bc2593a7ca812f2d4645fbb404

    • SSDEEP

      1536:OfL6PHnXEfiz4NRLLSLh11hybHpZ6ZIeqa/WxDaVrUsFu:MGn0az4NpSLJhybJgZIla/WxDaVrUs

    Score
    1/10
    behavioral11behavioral12

    • Target

      libbind9.dll

    • Size

      88KB

    • MD5

      e8d9b6e2e8b32b9985f0c627ca83886b

    • SHA1

      c000d44d36434b66ab35beabcde730c8063954ca

    • SHA256

      dddfa0212fd2132ec3dcd5a8299aadaf65b1e14f52c54f0ab4c57242826ae0c1

    • SHA512

      c9f143b939f29cd92540b4b5e838151df567114fc606cbf98e776320117ad3ddd6fe8885c7f2dce9c19b502f9f2d1a3fa54126380f7ea2b5f9dfdace214716a0

    • SSDEEP

      1536:G6seL384WkT1x3nKDxrsV4h9w9LU16uiK:Gdez8lkTLXoW4hwLU1Fi

    Score
    1/10
    behavioral13behavioral14

    • Target

      libdns.dll

    • Size

      2.0MB

    • MD5

      c17367e39863c447258d467132ded88c

    • SHA1

      cbe5c75f020935e0c08dff18e38cf7d5c0af0825

    • SHA256

      e1feaae1f54c4a5a6930f387b0023637564c2184392ce1c82890d3d8e7937aeb

    • SHA512

      0c158bce2123a0b55b16d74cd408daa42a82e2e00b4f4c205518d61f8776c1a7b42711fcb4e008eadb4048e008f83b3138e98be546580cee6b88860119c25748

    • SSDEEP

      24576:YnhH3l9P2mMzkjHdfojUgtgD9tC2s7SmM8FrqV9ABrAPNullvb0xrvY6ZYhBzfsM:Y1YzkG0tYRhBzfsPXvmu

    Score
    1/10
    behavioral15behavioral16

    • Target

      libeay32.dll

    • Size

      1008KB

    • MD5

      8f7e5dfc786b6c5e9fd4e5a51b7988d1

    • SHA1

      55a000865cbdf2b2fc1a2c62f02315747c4d4667

    • SHA256

      8d4bf47897c4c4c8726325108e752636b6be0a83068e3a89dbfae72b41bf4633

    • SHA512

      72faf705746dc9a061087aaf0608cf950b373a1d0a2d4f1cf07dd200903d92a2169807c357dc0257dafb5dcbfa0a38d5709bcb9d8ecaf662636f35fd6abf206b

    • SSDEEP

      24576:vXsy8xDN046rTIXbhMnXe0rpBjfmaLsubI:vXq2dTmMlrplmYsMI

    Score
    1/10
    behavioral17behavioral18

    • Target

      libisc.dll

    • Size

      480KB

    • MD5

      21cb181ab711adfcddf105f7fee70d6b

    • SHA1

      5f816637062217bbe03197449743e4d325b880d3

    • SHA256

      66693f0bb5b69f5ef5cbf89c2c61e8a39639be2ed2c3672e674dd8940961abac

    • SHA512

      57eba0e8ad060b41f6d6e9bf4de9f53e436e4bc088175149b6aa6399dbe8e30659a2a81d6bef52fe6bd8bb7fcae5aecc127d8149244494f80642915ebf66927a

    • SSDEEP

      12288:oWm1lx8nhlOSAwUE7rTb+6W43Z7Sg8y/NWxLtI5HkQ:olilOxgL/sVu5x

    Score
    1/10
    behavioral19behavioral20

    • Target

      libisccc.dll

    • Size

      72KB

    • MD5

      7cb3338dd3b47fc393ee9510a771126e

    • SHA1

      6e668c2446b45bfedbc38710ecbe69c883e55b6c

    • SHA256

      dae470a9efd1347f28e59b0ce39375b810560bbece0148e987cc6f7a5389ef2f

    • SHA512

      7324f50838acbf92cc8cdee884e43b0f99dc0e218a9ea6b3da7ec4ead0e1bbefaa293ad8555faf6ca621498fed7e912d8324c7e495d17c1856ab543fbd5ee904

    • SSDEEP

      1536:tAI9perMhcba5PeSN3yCJPtcJHcq+PqPoqdS5qPq5FfZrwKnrUsrjK:JWrMiba5PeSFyCJPtcFc/Paor5QwRrwe

    Score
    1/10
    behavioral21behavioral22

    • Target

      libisccfg.dll

    • Size

      116KB

    • MD5

      f75350e85d0ec97220e662d29d216edf

    • SHA1

      035a24f4d5d65d5011daf4c7406ebcd8248c98d2

    • SHA256

      3ab5668fb17d2a4fdc1f11ce24c41c0fa97295468a77c04d52723699707abe20

    • SHA512

      9293a7b4146f60626ac05cbe52fc6d7805f69b7d80ba41f102d948c924748831f967655eba21ba85664482c6a42e546e147e407861dc9e4b7406a34a6464a68b

    • SSDEEP

      1536:5SQYZt7/i1pUfesCgLA60t/w6nkVYKXsarUYZKTlT9y:0QYZt7q1pUFLCw6nkVY8rUYZGT9

    Score
    1/10
    behavioral23behavioral24

    • Target

      liblwres.dll

    • Size

      128KB

    • MD5

      876389b3c8642ffea6d8ba1ff94033fa

    • SHA1

      a60f2194acf7456ab612f9253c959837837de6a6

    • SHA256

      f5a4b341d5a1910eb96b7af8e1d4252abf312d7ab8ee2baf5852b9304cdd8d5e

    • SHA512

      78d3dc964928ae898aad5ff3a5118d906099dfc405e5d278a067abd9ba27609b928cd8f49969bc277a4bc5290dcbd2f1b80413a5cf84d06882f0f0985dfb0e71

    • SSDEEP

      3072:gK5erMqsJBqI7UcbXeZRI2kk87DuXiAf2Qpa5ELUni:gh4qsJBqI7UzlD

    Score
    1/10
    behavioral25behavioral26

    • Target

      named-checkconf.exe

    • Size

      56KB

    • MD5

      917743b3e4b259b4fb9efab04be68971

    • SHA1

      bcf9c59cafd94139b78be95964c21db0f8cb0059

    • SHA256

      a6c6793b9d34b1e194bf55a80f23679d73dabc522d711c671c9a3f0bce11851f

    • SHA512

      bbdf9568cd94cb4b2e595dfbcaf292ec9b3611dda5a579c30c81c9229b758ec02ed85c2d24b0efc52ec057abb11720f04f88e361ac4be164f564641a863fad04

    • SSDEEP

      384:hvXnQwvs4QwpmMsN3mSYLn+ot1SSh9DA/iE+MrCenmpPtZq8lGYsu0lSK+JFvTPB:hvK8nviCempPe+GJPIRrU+6zuZP

    Score
    1/10
    behavioral27behavioral28

    • Target

      named-checkzone.exe

    • Size

      56KB

    • MD5

      1d4ef9289031226efae0ce31339f2020

    • SHA1

      131cae10a0ceedef8902911bbdfdf094ccd4ea9e

    • SHA256

      55f223eb2b8ebac3842888520c4a184f54f5053d884e01762f2a8f4d412b7806

    • SHA512

      aedb77d70b9df20af8084785a64237befab341e19cacb28b09f987f5309e515078b37be9a758bee631eab54fa60da7703f1e8515c6ac7291cc7fc7a716805908

    • SSDEEP

      384:Afn6Ev6NaYWVESHq1bkPALKm7axlrQNsDx1PxNo1+s51BfJ6tgEFwPxFUb5g22Q6:Af96NaYWVpH1lgsDx1Ps1DVrUq22vZP

    Score
    1/10
    behavioral29behavioral30

    • Target

      named-compilezone.exe

    • Size

      56KB

    • MD5

      1d4ef9289031226efae0ce31339f2020

    • SHA1

      131cae10a0ceedef8902911bbdfdf094ccd4ea9e

    • SHA256

      55f223eb2b8ebac3842888520c4a184f54f5053d884e01762f2a8f4d412b7806

    • SHA512

      aedb77d70b9df20af8084785a64237befab341e19cacb28b09f987f5309e515078b37be9a758bee631eab54fa60da7703f1e8515c6ac7291cc7fc7a716805908

    • SSDEEP

      384:Afn6Ev6NaYWVESHq1bkPALKm7axlrQNsDx1PxNo1+s51BfJ6tgEFwPxFUb5g22Q6:Af96NaYWVpH1lgsDx1Ps1DVrUq22vZP

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.