Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

dig.exe

windows10-2004-x64

dnssec-keygen.exe

windows7-x64

dnssec-keygen.exe

windows10-2004-x64

dnssec-signzone.exe

windows7-x64

dnssec-signzone.exe

windows10-2004-x64

host.exe

windows7-x64

host.exe

windows10-2004-x64

libbind9.dll

windows7-x64

1

libbind9.dll

windows10-2004-x64

1

libdns.dll

windows7-x64

1

libdns.dll

windows10-2004-x64

1

libeay32.dll

windows7-x64

1

libeay32.dll

windows10-2004-x64

1

libisc.dll

windows7-x64

1

libisc.dll

windows10-2004-x64

1

libisccc.dll

windows7-x64

1

libisccc.dll

windows10-2004-x64

1

libisccfg.dll

windows7-x64

1

libisccfg.dll

windows10-2004-x64

1

liblwres.dll

windows7-x64

1

liblwres.dll

windows10-2004-x64

1

named-checkconf.exe

windows7-x64

named-checkconf.exe

windows10-2004-x64

named-checkzone.exe

windows7-x64

named-checkzone.exe

windows10-2004-x64

named-compilezone.exe

windows7-x64

named-compilezone.exe

windows10-2004-x64

Analysis

  • max time kernel
    1s
  • max time network
    20s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:44

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\dnssec-keygen.exe command="C:\Users\Admin\AppData\Local\Temp\dnssec-keygen.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Report Analysis Logs

General

  • Target

    dnssec-keygen.exe

  • Size

    60KB

  • MD5

    41d085551f486b3e7b1cd7587d44796c

  • SHA1

    09e3d8213cd530b92cc4815dd2eef33e862dbb58

  • SHA256

    3d6f587e267a86736e1820ca87a5c0984bbde1c0c278eef06e2acf8474b67ee0

  • SHA512

    8aa651caf3eccbeb10a46615b1eb7ef70534c2a55407909e6d902903ef3bb8c1b42f6a31826660170b9f03a7aa21dcac9174d58c854cdc1487968b661aa1b6d2

  • SSDEEP

    384:9aJCyOycdwR1BD0D6qWBjLC8P/R5RwpIZPtZVEiOr6YBm1m2tbfv6vxFU5NkLzOW:QEyLcdwR1BfXRXw0PdEp/E1ILUwdpP

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\dnssec-keygen.exe
    "C:\Users\Admin\AppData\Local\Temp\dnssec-keygen.exe"
    1⤵
      PID:2204

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2204-0-0x0000000000400000-0x000000000041F000-memory.dmp

      Filesize

      124KB

      Download