c7d95e2b14135ebea824c411c32ff4ba98fa8b5a7a2604e808ffec195e136279

Sharing

Copy URL

Twitter E-mail

General

Target

ff166a9b894decf9a0e4ef2a0b8d870f6bf7ebf5151de26ab4ee13b89a73f92f.zip.zip
Size

12.9MB
Sample

231107-rgrlksge3t
MD5

7a60f661f8eba4c9fcfedba0279c0e5f
SHA1

2b9a1d6f50e04207bdb00c908c878f50c16ca9a7
SHA256

c7d95e2b14135ebea824c411c32ff4ba98fa8b5a7a2604e808ffec195e136279
SHA512

538350577e818a9242ae82a827461b4cbf0e6492a9bc21356301f86222ac8f66c5fa8c0034bd3a9b6288eee9fe6d0795f7d03ee8daca16b78a8cf35a6eee8277
SSDEEP

393216:80S3v8RwPSTEZpXa9gdsCNjDEVUv+bylZbe86:80SSw55NEylZiT

Score

3^/10

Malware Config

Targets

- Target
  
  BINDInstall.exe
- Size
  
  2.1MB
- MD5
  
  436dc9e6aab8059bad15d5a92d0511a4
- SHA1
  
  1eec360063dc259eea1dd7fde65ba142b0c1bda2
- SHA256
  
  538b49b81e8359b3294d00afb9688650fe0e1d2df48b5cfad453b138b6f7bac7
- SHA512
  
  b4166802dc07168f0a5510dc0aa919e946d4f0100528bc9fbedd6edddd9150b247f7286f608e4a396716d3defd68c83135987542fc46a8d58fad6f4ef5c066e0
- SSDEEP
  
  24576:JPrY4zNJTGIib8PeEmT4seLU5pSNX5AmoQnRekxtITfb:JDTnGj8WqLNpzRC
Score

1^/10
behavioral1 behavioral2
- Target
  
  arpaname.exe
- Size
  
  40KB
- MD5
  
  084569206e3c43f949ffedcb0c5f4bce
- SHA1
  
  22d96eafb178397fe77b333a90564fd646f45848
- SHA256
  
  bcd5d975c87c633f86424b1807c25a216ccb7bc21327bec44a545120390cfe5b
- SHA512
  
  2b468b5aee202823d1318749700ffaac5f7c907dbc35b33351e7470c743224df51fb0918bee721c035a2ae6736f2d02fd6dd1daed72f2740456fe28450cf7006
- SSDEEP
  
  384:gWsaAWdbuqBOziF9FmP7NVv6vxwUbMflRMs6oP:gWsrChBOzK94hVCmUEAWP
Score

1^/10
behavioral3 behavioral4
- Target
  
  bindevt.dll
- Size
  
  448KB
- MD5
  
  b5a4d95f1ff60b6f8cb7ee22a18f8a1d
- SHA1
  
  aab2c215f04f135d192768d054a0b344b0447636
- SHA256
  
  e52bf7662f17a76dcff325f51aacf7fab377bcfac8da20482867dea22ac302c4
- SHA512
  
  b23a7f5d8adf3e572633d264e875f6d42c41a9b9e65608d721b1f89c80c9f99687de209b229e63ea693a6fc4ba5a1281dd0bfc51e460fbd7ecf80ee753974de7
- SSDEEP
  
  6144:kLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYMNodHiVXj:kLKo9PLecFTsU9m9E73FSRsnb6HyIj
Score

1^/10
behavioral5 behavioral6
- Target
  
  ddns-confgen.exe
- Size
  
  48KB
- MD5
  
  48c10e1a2a2af26951db0eb6fcffc090
- SHA1
  
  c7257916080b7494f9099b032182f645f7d9c329
- SHA256
  
  ed48004ad86649d53057db8d4e5840b51942929999fe379a6f2ae44a29276fb6
- SHA512
  
  bcfd118fd88b7e77627c682839d8ccf0e4f608705ff0d16dd71bbababd183e16ad69a40a1418a12e91aed52536e9dba9561ee0afaaaca88e4e4f908437870a5c
- SSDEEP
  
  768:azLQRA7T5CzLHG4zW1LnmvbTAjmU0XP4SwP:aQWubm4bUjmU0XU
Score

1^/10
behavioral7 behavioral8
- Target
  
  dig.exe
- Size
  
  140KB
- MD5
  
  5a6619c1640599acbba43c63239d1715
- SHA1
  
  4d8598848892318afea22d5d696352262d2a93a5
- SHA256
  
  c5ead07e5eeff6aa2dc4d9508d5baeb7c8da66ca8b202d6fe4df60f2001d239e
- SHA512
  
  2fdb33f6aadb4348872fb9bdf9c46d383bc61aad9b1a75376ef846227698a557464a258d3631108bba88beb5cd3270eb3590b985721c44b999abcb8fcedce751
- SSDEEP
  
  3072:NtLuHQknC3VJOV48dZR63nKUGa0bxD3pBmUS:JO1dZR63hYD3n
Score

1^/10
behavioral10 behavioral9
- Target
  
  dnssec-dsfromkey.exe
- Size
  
  92KB
- MD5
  
  b29f00331274362a94a8917f5fff73f9
- SHA1
  
  9337b3106474273b61cc11bfbfd735ce200fc5d9
- SHA256
  
  2fc8bff29c16a78cd9fbdb95db9f03b2d239c3e5248d7268cc1b04e3e508f72b
- SHA512
  
  bed39fdd8d6a9752fde336ae3a39f0a68e38a2c7b846153a9ad81b978a5eb8c5f1bd1e0d433cfac1a3314299429a0ed67e745576ff1a955fcf5f8cb204b2023d
- SSDEEP
  
  1536:emH1PK27kCtmLZCHHD4JoOZFNLH8PLk8mUxaUtI:emH1isgL8HHWoOZHLH8Tk8mUxaUt
Score

1^/10
behavioral11 behavioral12
- Target
  
  dnssec-keyfromlabel.exe
- Size
  
  92KB
- MD5
  
  2bebb2f651bd71724b234510e13f640d
- SHA1
  
  249b8ccae7397a212f48761168773c547fbd821c
- SHA256
  
  a2dad4966869d39cb5127c86d7c38892c0d19a92e0eb64c46a948e04fc2321af
- SHA512
  
  0100f2c41a6d2ebf3d2334446c42173edcd7e47a07b138881df7fab322632effa53308526d36f746a51bd5a4693ee8249363aa97ebbe191d6ff1040069b3f683
- SSDEEP
  
  1536:YRpWY0WPZxv25XWHNxDu/OZ4h+k7mUER:yff4XWHNg/OZ4h+k7mUE
Score

1^/10
behavioral13 behavioral14
- Target
  
  dnssec-keygen.exe
- Size
  
  104KB
- MD5
  
  1df55abe95c76c4129b729aa0217ed71
- SHA1
  
  8112d0718d52ec7989f0f5854e0ced7b6c952f4d
- SHA256
  
  08ab5b077bb486d690dd1e1cb1a822d7c1c9be22b449f6f8a41d25a39a81ff0b
- SHA512
  
  39a5a98b1242b62c3cb4e83128972555fdefd74af493699cb96d29e7a488c338abe9575fa979c4fc66d0710b877afd681cedfc90006573267300c765e9591d54
- SSDEEP
  
  1536:HwSuyjvKwXO+sDxkZ+Ha44OZFxcwa010JZ3KWgsXbakbmUEix:QmJbgxkZM4OZUwaXJZ3KWgsXbakbmUT
Score

1^/10
behavioral15 behavioral16
- Target
  
  dnssec-revoke.exe
- Size
  
  84KB
- MD5
  
  c11bca5d11a45c840860ac3bb0729bdc
- SHA1
  
  fc4a9def5140dab603bc4b6d6dda9abfb3219052
- SHA256
  
  b5bdb7d7a073dba48d934e9ec9d36fdfda011020f2ccc224dcc5b6dd34ae46eb
- SHA512
  
  2ba6373abfa775e907e0975af5033397a0b9110782190ceb8c09279b1f847913e8ab1c00d29a40bd65576ad7a01abb4f0cb687909d1b82231f3060b1023c2dcd
- SSDEEP
  
  1536:9W6VGgDLtoyKcGrRoqkSNCOZKDRWdk7mUZc:M6V92yKcGrHLCOZKDRYk7mUZ
Score

1^/10
behavioral17 behavioral18
- Target
  
  dnssec-settime.exe
- Size
  
  92KB
- MD5
  
  84cab379be0139306430b853181a3138
- SHA1
  
  62c41c5aa93d78f0f880008f31eda4773179ba38
- SHA256
  
  82cbe87547cdb601baef6b6800d9d9a4b0ef217c5e4fbe6372af9816fd1a4154
- SHA512
  
  37d8024be7cfcf438ac60e3811e8d72e7a6e59df95a9ee096989c44b9705b41966e4f7d7d6c0ab1e678dcd923670abb19f5200d549ee43fde3fad7cddf1f50db
- SSDEEP
  
  1536:TmNZvHZdoPQMQNT+mOXJFoP7bP4eOZk2LaKok7mU3s:TmNp5dUQNCmOXJFoP7seOZk2LaKok7mU
Score

1^/10
behavioral19 behavioral20
- Target
  
  dnssec-signzone.exe
- Size
  
  152KB
- MD5
  
  ba0bef3ec09b472a481e30723b3308a1
- SHA1
  
  b6cd09a7a1711803ca7e80fb099631db9df13007
- SHA256
  
  8ea4e59150a14677327e0d637aaa8b41e0a0749f419258c5fe65fc09e800d882
- SHA512
  
  a1f40c6cd49eaff3b954e4ba77e633351acfb6f189d191f579d2842eef889ac757d6db632d4b53bdd9e5bb0286d08d7cd7cb30e361eca2bb8ff159dab0b9476f
- SSDEEP
  
  3072:gn7pGy6ksJnSEJBqwIDbTOZc7gASjpHKAl+0QHkMGUXiwiw:upGpkGnSEXqwI3TOZckASN+
Score

1^/10
behavioral21 behavioral22
- Target
  
  genrandom.exe
- Size
  
  40KB
- MD5
  
  28d7d6c12cef8882f678235c8fdb7ab0
- SHA1
  
  609c35d6db707dcf01b55c812bcebd1afdb4fa10
- SHA256
  
  adba5b42e8cb3c2eeb7f5119b2c53c478812f30133ddc5a341e3bd81887d8051
- SHA512
  
  1f1dc4bb37b94947ede0ce6b88d4e5b001a119ffcf7927ad691c6affb60ac985ce3a2a499def884f5d84833f0961a0380ef8f108606b3e4aa238ad0706e499ae
- SSDEEP
  
  384:qSuHRskrQsU5Ho04zu75yenQbywA7PxwUbgIKGeK6dP:qj2Z5HofzG55nwA7GUnsNP
Score

1^/10
behavioral23 behavioral24
- Target
  
  host.exe
- Size
  
  120KB
- MD5
  
  0e5e87ffedf4fcebcd81bfe76d52af27
- SHA1
  
  68c00f54c31a6094a4a3e956629316c42d6ffabc
- SHA256
  
  188b420f3ee856067708c9116834b68be6a232a48c47998c7e6343ebbe763e81
- SHA512
  
  2568f918e40b0a07651ae69beb612d519b7881af21e911629e420e077c7290be859606330e25a72523d8f2bfd0abb9a833ea78f5cf1959b46df525babda63a5a
- SSDEEP
  
  3072:VvjRCpNHupkcGPIw8PbmKFAbxDX2eGUSq:VUgkcGIw8PREDXl/
Score

1^/10
behavioral25 behavioral26
- Target
  
  isc-hmac-fixup.exe
- Size
  
  40KB
- MD5
  
  7c991a4bcc19eee4c0f6b1beef2bf9ad
- SHA1
  
  8c1b6ad4d4e587bac203a26a80e244eb35026c5d
- SHA256
  
  0af37bddb3dc66bea73c9a2916361bb23fd7bef77bd4add9fdf0ff030879e9c2
- SHA512
  
  ab57dfafd62c7d2ae7abdec1d59c0346f890758e0be5edb250158909fdd469d8d0131e8b578991038e67b13b79c454e9756658689e70f0a1ed5c5cd19cefd483
- SSDEEP
  
  384:mZQ/K/tLJzr8YPfWjBuL6vxwUbT8YzRss6oP:m0ctLJz/u3mUkYqWP
Score

1^/10
behavioral27 behavioral28
- Target
  
  libbind9.dll
- Size
  
  96KB
- MD5
  
  9795608e4de1228e47f927d30ae11338
- SHA1
  
  d7fa4702e7c3f060be96d4a211bcb64bd3e08f88
- SHA256
  
  959ce8e5d45863af662313f4389da8705b10a2f50f4545e7ab7a4cd981e72ea6
- SHA512
  
  7831dc60d32b63c259c2a1cbfb26ac2d7473824852be44f0f1a3eff1c35a8730ee91f33033a0b5450105b29db0fe45bb4146a18a3611ee36463648640306626d
- SSDEEP
  
  1536:iJ3toBzeVqx2z7mB9yI2InvCMyWL0JmU5IQPrknN:iJ3t4zeVqx2GB9yI2QvCMyW2mU5IEgN
Score

1^/10
behavioral29 behavioral30
- Target
  
  libdns.dll
- Size
  
  2.4MB
- MD5
  
  f79757788cc3cbd0b9d444d2ac2bd50b
- SHA1
  
  c7b969fa8f71204c2fd0e0041c405cdfd5dcfc73
- SHA256
  
  1d7bc1fb09351ff9a123e138b55c61ea36238c8995879d167bc39d85a4bd8343
- SHA512
  
  006b952b259a3feae8fe3a3d7a74a5aa2ee0b464500319678e0b5c8200a1507fb56614c910e290d8e9e209abd3c658827aaeaacc8c8e851c27b977c70bb5b8db
- SSDEEP
  
  24576:aZYyRS7caZVBXDDGAPGLUDPgBEB8TQhK0229tYN19mj1wHZizavk3DSOPwrplOX2:VZH5echKSVNDLhh/zfsPuyqrLK2XJ
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32