f054d07dccf8f200ea3838160e34aedceb0c7111d1434e6f0863f610e574a460

Sharing

Copy URL

Twitter E-mail

General

Target

a33172b938faad44c18c66b1ee689a93ec81299bff8a674a3ae8071aabd16bdd.zip.zip
Size

12.7MB
Sample

231107-ratglafh2z
MD5

1ff68e30a824978e028e10a19e6e5539
SHA1

bc78b0f0cab031c321cb614a445efa388e055088
SHA256

f054d07dccf8f200ea3838160e34aedceb0c7111d1434e6f0863f610e574a460
SHA512

31249486bcd089639537b95d4b3d666054627a7c0c2a076b49300ed1418e0267a53093c821cc58e58f3c016bd81757c52a7ef04fdf999de461f3a9960e365661
SSDEEP

393216:ze+kRcou7eSW+5JRJ5PsPRnO3Zr22xsn8trpsPXYEfTmeD:7o+eI5JT5PsPp6Zr2h8t6XBTmeD

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  4ad41617bf612356d387f15f7b5ba47f
- SHA1
  
  b1348fda687b6044eec6a361fe67a05206462e11
- SHA256
  
  ab025611b748b86e438f5341f4be5f01f0962a47ca204182cd749e238c82639a
- SHA512
  
  f4825ddb944957732af61168b57cc3841a4e03c4359d387e0037cfafa5eca5cc900597ff7f2b7633fdb7677900a1e2f45c9d623f52bd87562c6ed0adc937dc8c
- SSDEEP
  
  24576:6PrY4zNJTGIib8PeEmT4seLU5pSNX5AmoQnRekxtITfb:6DTnGj8WqLNpzRC
Score

1^/10
behavioral1 behavioral2
- Target
  
  arpaname.exe
- Size
  
  40KB
- MD5
  
  8be6976f6fa4310abfd78345c6fd9f2d
- SHA1
  
  c040082bb46229cf5115aa4d2fb930315ea4beed
- SHA256
  
  b80da757fb5f5afaf0ac14377f97657ecf9ffc042a5174a345df2104afe84084
- SHA512
  
  98fd073ac15715897d81145767f1484f2ed337fc2d6f5f031d9642196b5e6d5d21d290f7ae7ececcd642d5e8d79d5314060a53261993627051be4bbec6056ee3
- SSDEEP
  
  384:IWsaAWdbuqBOziF9FmP7NVF6vxwUbMpVRjs6oP:IWsrChBOzK94hVYmU03WP
Score

1^/10
behavioral3 behavioral4
- Target
  
  bindevt.dll
- Size
  
  448KB
- MD5
  
  c35867a3c92fc45b0d6e8cc5c3cf3d97
- SHA1
  
  4c111318b9c5a92370af38755a15cd9bb1437c75
- SHA256
  
  045dc3badea4f221553fcd8c9c972a88e1bd831a3a91017606e501f876469074
- SHA512
  
  bdf595f4e56b71e9d98a3ad5070d3777c781c8c034bd7587ea4f7eda4778f4c76521d1c197dfc22755030d4d1884fc92eff186c3205166fba5e8d9bc42bb6a77
- SSDEEP
  
  6144:4Lyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYcZGdHiVXj:4LKo9PLecFTsU9m9E73FSRsnb6PMIj
Score

1^/10
behavioral5 behavioral6
- Target
  
  ddns-confgen.exe
- Size
  
  48KB
- MD5
  
  111b1cbadbfbd23c5ddaaa3b8bf9e1dd
- SHA1
  
  e9702e5d830d9b2cc4589a30f90c57ba19253948
- SHA256
  
  662e58551e24b27826a201703f5e6f7e2847bb32dfe87e7e5173b23734ae8eba
- SHA512
  
  825920934f46eb07c52c36f1d81138fc7b201d14f4601874a78377a839bd1d8a7916fe9c407a50979f4912cb6a32ee3cdbfba6ea442b3ddfc818633cb3c82f62
- SSDEEP
  
  768:6zLQRA7T5CzLHO4zOtLnm3bMAjmU/5P4xwP:6QWub2YbrjmU/51
Score

1^/10
behavioral7 behavioral8
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  346e03ad613fe5925b0c2cad059ccb21
- SHA1
  
  f95beb926d47ea9b1866e2ca73c703d0c5ada0cb
- SHA256
  
  03eef7d65ced347cc71c1fde0436a3014d99c26d9d7c3c28fdd1aa1468eed1fb
- SHA512
  
  e7a192e01e40c88a91e0427253517f5da61c84987b2ebbdd01327b9b3b35668b7ab1effe5c531b9e0251f9a0b2ff94b0f796dac96fec1f7ea88ded0051640b7d
- SSDEEP
  
  3072:dqt7PYR7XYTMesRDzgn6Z5bxDXpRmUeT:qM7XYTMevyPDXH
Score

1^/10
behavioral10 behavioral9
- Target
  
  dnssec-dsfromkey.exe
- Size
  
  64KB
- MD5
  
  d79f05570c67ce1c0d65082a253b4aef
- SHA1
  
  1bbb770e2cc2820a9a229b610dc1f606565df62a
- SHA256
  
  e93d064ddf367d13d485ec7bbb0ffabaf2ffe0317602d14d60dd99b78b85db85
- SHA512
  
  f76c0eb5943eec4c64a2c6c839156d42c3833f933e5cf64e3bccf0eac436d34f0b276a8424e9471d664e98b2e7dfc7cb78f7c9648ccdb53e84a26be0c312da49
- SSDEEP
  
  768:nrjv1qkXRNjDKqeaTsIL6z5tVN4jTBmUfXQwP:8eDKv0sptVN4vBmUf9
Score

1^/10
behavioral11 behavioral12
- Target
  
  dnssec-keyfromlabel.exe
- Size
  
  64KB
- MD5
  
  fa3d82804c5929942a74eee4a270ecdd
- SHA1
  
  848c560282345d67bd4a5bc3afe3722a5fe600de
- SHA256
  
  2c015543e9a1048eb8f8f3dafb0f5b647dc7ff3610ba27ff41d7bf49a5e735d3
- SHA512
  
  7168b737572ce4e59dc761ef36255d113491d5f9c38918e5c9b24dd02833987bbd142ac4f011af4a0a9a290f54859ac6858ad6da48c386b685b4d5b4bd659b52
- SSDEEP
  
  768:k4GUGg12WL5BF/yHXGE1KzjNKzip24slJtrmUcOULsUL+wP:CZg1DX/y3dip24s9mUcOesev
Score

1^/10
behavioral13 behavioral14
- Target
  
  dnssec-keygen.exe
- Size
  
  80KB
- MD5
  
  48990118c9e826aa4564693d80dbbf05
- SHA1
  
  b0212a301647fdaa52a9c78b0af99b58f9077920
- SHA256
  
  05957f3f07dc870221183404f12693a06dbe293baeb7e1fdb0252fe7fd4ba913
- SHA512
  
  b81f0b73ce6e5a0e0879ec71df82e7049b523ca0a3fce4f3c87218e2fc263d64dd440b9d21988686a0c627dd25dcc2d2c0d15161da91723b544efdc281c4f27d
- SSDEEP
  
  768:Mgn54SOFjSmzYvzT0oc1+zWF6g1d+JZ3KWgsXbVlNmU9wwP:Mjsvz49FZ1EJZ3KWgsXb1mU9N
Score

1^/10
behavioral15 behavioral16
- Target
  
  dnssec-revoke.exe
- Size
  
  60KB
- MD5
  
  b91fceabf13979d8a834837317772bdd
- SHA1
  
  67eec8007012dfdc4741de676fd4a470531acdf5
- SHA256
  
  30900aa280a51928b4b4c644c0155ed05e1374719c646fb5b607ca10842819fe
- SHA512
  
  b29a40b1db49d3083660335dfe03e815ad9c056c348cac829c0ac15e00022c5fb4b9ea633cf68df77df16c76cf6feffa4fc0300b13de7a0c0ac94683cde32542
- SSDEEP
  
  384:itiU6tFM+r7NE8PyJ0i5GDRz+NrmhzaCQE2utGZgS6vxwU5IWUYbsy6oP:cifHjPVzDRir8zonxZemUb2wP
Score

1^/10
behavioral17 behavioral18
- Target
  
  dnssec-settime.exe
- Size
  
  64KB
- MD5
  
  7553f699b16704016a176be52214cd51
- SHA1
  
  e44112439fbcb279274b86cad79fe25871c4b451
- SHA256
  
  b5727297bfc11aa90899250c804a680255f0711509d83c3aa00b96d1eb6f6225
- SHA512
  
  faef681f1a40b77e0aaeb3954ec497e80db1ebc5159524e695b5cf50c6437c9c2ca9d55a97f3e2ffac640de33395eed78725663e32381cafe7d55bda542f1a64
- SSDEEP
  
  768:v/SpUGWamruFjzUylZuNLJKefmz5y2tOYWKekmUAJT7OT7JwP:vKppFjjTuJHoy2tObKTmUAB
Score

1^/10
behavioral19 behavioral20
- Target
  
  dnssec-signzone.exe
- Size
  
  136KB
- MD5
  
  c756e37a369fe1170833ab7912249e28
- SHA1
  
  9fa7fae829295a073a1d8df20b1f0538d11e7afe
- SHA256
  
  7fd64d10457feb058ecfd2fa359ba75bfa12596c90da6a6664ee334c38ecf138
- SHA512
  
  240b02e84fe0f695d0dcd608c1bfd362939ef3a8b84a35dc9baa738809b265d1b58a8159de065a42221351eb04e847cdb6d6b00970aca2b1c359d72a8a68b518
- SSDEEP
  
  1536:UQt2PxofOcopFi5m4REg42LMlbojfYvnQFBsEmh//pf8alYWJvDx34GAjGUaER5U:Updc3j4LoFj9i6VWJvDx34GAjGUa
Score

1^/10
behavioral21 behavioral22
- Target
  
  genrandom.exe
- Size
  
  40KB
- MD5
  
  55fea76d356597489c18ad4307bd00d5
- SHA1
  
  3a6ff99b4cabb502d91875a999d52ed8d2066797
- SHA256
  
  e2637da016bd4025e2c518d9e843450c1d71bd6cf56daadf6ee0ff3b05e25d42
- SHA512
  
  81e86a8b84d79c555657bb2bb558c874dcc7f49a48abc845127913f23e96cffad454f20cb859a163dcbd86ce471018897b97f4f5465b78ab380f44d87cd1e91c
- SSDEEP
  
  384:WSuHRskrQsU5Ho04zu75yenQbywAgPxwUbg3i0eK6dP:Wj2Z5HofzG55nwAgGU+uNP
Score

1^/10
behavioral23 behavioral24
- Target
  
  host.exe
- Size
  
  124KB
- MD5
  
  5bda9a179cd1347ffb89ce56a7875a84
- SHA1
  
  04cd3f2ae551c97a65191b5c6d4dde9e0ed98f4c
- SHA256
  
  ad1c9d67915eac3c3649d6d729efa381ab30778553fb611947a04cb8d8215116
- SHA512
  
  a4f65909d5da1a4dad6a636a53cace4d614b3c8f18644bc64185e8d24c993cfa589a0c8566ffa31690087201daae7007875f04ff180fde636059cc7e33c491ee
- SSDEEP
  
  1536:1fs9jhPQrZQ6QFBhUTNqqhv217129YvauVKbxD32eGUfaDCu:1gQV+haqqx+712WauVKbxD32eGUfaDC
Score

1^/10
behavioral25 behavioral26
- Target
  
  isc-hmac-fixup.exe
- Size
  
  40KB
- MD5
  
  7cee6067514933fdaf9ef80413c23eee
- SHA1
  
  715ed88cb76fdad2f73595f3ae5b2d63ed51f1c9
- SHA256
  
  d6a0ca6454fb7e0d39aac0ef97d7a0e26fc5009148f3184e5a6ca3b83d17ed3b
- SHA512
  
  8d8ba9eab2b51d36eeb6835404b66b1d40f188ebf718ff9ff687069db66ab1e1b8d368e7282fd398615414e2fb3d03e68bbe033c015c08868a73b3f2f7581c46
- SSDEEP
  
  384:dZQ/KHVjJzr8AHfWjBuX6vxwUbTMuzR3s6oP:d0kVjJzfu3mUUudWP
Score

1^/10
behavioral27 behavioral28
- Target
  
  libbind9.dll
- Size
  
  92KB
- MD5
  
  7800722532df3363088cacfa5c564e84
- SHA1
  
  7941f3536e56248e5177b67212bae2fda42d2434
- SHA256
  
  b6064e7ca5f48a088fc447035ba46f0c13680e05b9ff4f1f0475d0f225da2e39
- SHA512
  
  592b20d34d27863bcebba8e021f3641e9d4ee0270c4e5d2bc83caf3dcc969adabb291a546ba8bca893d0c3a617d77c7b3832aa7ec59389f23e09c4754a0afc24
- SSDEEP
  
  768:tlKNGsRjOK56IFXxzgioBidbEUvtVmayzKKzzf1IJ3xIzUjmUpp0XPrPOn:nKfxOOyindjvt4aG9IVuzUjmUpgPri
Score

1^/10
behavioral29 behavioral30
- Target
  
  libdns.dll
- Size
  
  2.3MB
- MD5
  
  20e28a90ca8ded6935162799c08551af
- SHA1
  
  08072425b7faea45ae04f65a2c51a3524adf007d
- SHA256
  
  eb9180af457e6cea7ea4685a27cbbf45283fd87fda1a45a37f5d439a1ea2731f
- SHA512
  
  37dd266db8efec4d28a7692be6c2f9a4f82a3f6c8e54ddd41e79b5f101eae72666d21e0e1caa0a97a39383f4d11463cf87c88d326e7153cc6303daa87d13e157
- SSDEEP
  
  24576:brkWz2y/P7ObBkDBgNXmIMNSeFaTWPSeh461EdjSktEH4S3CctGIsbGhRzfsPOgx:IsP75B+2uGVyIZhRzfsPOgq2H5ml
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32