Overview
overview
3Static
static
3BINDInstall.exe
windows7-x64
1BINDInstall.exe
windows10-2004-x64
1arpaname.exe
windows7-x64
arpaname.exe
windows10-2004-x64
bindevt.dll
windows7-x64
1bindevt.dll
windows10-2004-x64
1ddns-confgen.exe
windows7-x64
ddns-confgen.exe
windows10-2004-x64
dig.exe
windows7-x64
dig.exe
windows10-2004-x64
dnssec-dsfromkey.exe
windows7-x64
dnssec-dsfromkey.exe
windows10-2004-x64
dnssec-importkey.exe
windows7-x64
dnssec-importkey.exe
windows10-2004-x64
dnssec-key...el.exe
windows7-x64
dnssec-key...el.exe
windows10-2004-x64
dnssec-keygen.exe
windows7-x64
dnssec-keygen.exe
windows10-2004-x64
dnssec-revoke.exe
windows7-x64
dnssec-revoke.exe
windows10-2004-x64
dnssec-settime.exe
windows7-x64
dnssec-settime.exe
windows10-2004-x64
dnssec-signzone.exe
windows7-x64
dnssec-signzone.exe
windows10-2004-x64
dnssec-verify.exe
windows7-x64
dnssec-verify.exe
windows10-2004-x64
genrandom.exe
windows7-x64
genrandom.exe
windows10-2004-x64
host.exe
windows7-x64
host.exe
windows10-2004-x64
isc-hmac-fixup.exe
windows7-x64
isc-hmac-fixup.exe
windows10-2004-x64
General
-
Target
9ff59dcf67010074de076fdeb26b1a1e4e23d0dfccf48e493f9904be7a460ae0.zip.zip
-
Size
13.2MB
-
Sample
231107-rq17dahc4s
-
MD5
31aceb1d60eb223aa78207c407ab598f
-
SHA1
73065fe6ce082f8dfe5efcb8606ceeb0b64af8c0
-
SHA256
8f76bfcc6dde1c35702fad041d07eeab8fbc00841ec80d065a5309c5a98aae83
-
SHA512
a8c63c2e2c36563cd293e853c4875aa9d2ecd739549cde2605775f35879118585f2a3d6f9eeee2c2d7fd1465cf1681ab698ecf2724ebad9759ca900e914bca31
-
SSDEEP
393216:Pb5E90Ejhh6dwN+QZ8y0DcAPUUAylDfoqzkiaxvv4:D5EfU+wiR0F8UA2EqzkiIn4
Static task
static1
Behavioral task
behavioral1
Sample
BINDInstall.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
BINDInstall.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral3
Sample
arpaname.exe
Resource
win7-20231023-en
Behavioral task
behavioral4
Sample
arpaname.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral5
Sample
bindevt.dll
Resource
win7-20231025-en
Behavioral task
behavioral6
Sample
bindevt.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral7
Sample
ddns-confgen.exe
Resource
win7-20231023-en
Behavioral task
behavioral8
Sample
ddns-confgen.exe
Resource
win10v2004-20231025-en
Behavioral task
behavioral9
Sample
dig.exe
Resource
win7-20231020-en
Behavioral task
behavioral10
Sample
dig.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral11
Sample
dnssec-dsfromkey.exe
Resource
win7-20231023-en
Behavioral task
behavioral12
Sample
dnssec-dsfromkey.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral13
Sample
dnssec-importkey.exe
Resource
win7-20231023-en
Behavioral task
behavioral14
Sample
dnssec-importkey.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral15
Sample
dnssec-keyfromlabel.exe
Resource
win7-20231020-en
Behavioral task
behavioral16
Sample
dnssec-keyfromlabel.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral17
Sample
dnssec-keygen.exe
Resource
win7-20231020-en
Behavioral task
behavioral18
Sample
dnssec-keygen.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral19
Sample
dnssec-revoke.exe
Resource
win7-20231020-en
Behavioral task
behavioral20
Sample
dnssec-revoke.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral21
Sample
dnssec-settime.exe
Resource
win7-20231020-en
Behavioral task
behavioral22
Sample
dnssec-settime.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral23
Sample
dnssec-signzone.exe
Resource
win7-20231020-en
Behavioral task
behavioral24
Sample
dnssec-signzone.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral25
Sample
dnssec-verify.exe
Resource
win7-20231023-en
Behavioral task
behavioral26
Sample
dnssec-verify.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral27
Sample
genrandom.exe
Resource
win7-20231023-en
Behavioral task
behavioral28
Sample
genrandom.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral29
Sample
host.exe
Resource
win7-20231023-en
Behavioral task
behavioral30
Sample
host.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral31
Sample
isc-hmac-fixup.exe
Resource
win7-20231023-en
Behavioral task
behavioral32
Sample
isc-hmac-fixup.exe
Resource
win10v2004-20231025-en
Malware Config
Targets
-
-
Target
BINDInstall.exe
-
Size
2.1MB
-
MD5
902c55c373bdd719ad838d1759b276c5
-
SHA1
44d232457bb043ccd44bacd89678023032234159
-
SHA256
08a32e1b6994b907e06d62842b8fc38b0e621b9ff3a987f1330d733a81e65327
-
SHA512
d26b7e5757551ea19f6a036182107fedb55d896bc8c64452794f680238cea0edd1158c1a8611c8acc26a34a3c81f604de17442040a9f2608f7f158a4dd6997ef
-
SSDEEP
24576:a16rpfIRHFX/JmG97TojzCWUoorREPLW6GgpVZzybIbkI7gt6893NN:sQGltJfXvEP6IVG
Score1/10 -
-
-
Target
arpaname.exe
-
Size
40KB
-
MD5
bc947b6635f477c0f5318928d3b43016
-
SHA1
3c5102951e97a8bfc9233ada22b0fac13c2f14cd
-
SHA256
ef06a666e7900c1bc25abc4558915556672f77a8085a573c36a16275aa06f0c3
-
SHA512
26a071187a9e154f9fad1096d31bdf5f544fba747a2abac2b2e7a60d3c69c7dc343ba3d72ae04aa23f6e8f999740327121e9a6e69381c687cc97b6a758ce3e18
-
SSDEEP
384:BWsaAWdbuqBOziF9FmP7NVe6vxwUbMdlRDs6oP:BWsrChBOzK94hVZmUCnWP
Score1/10 -
-
-
Target
bindevt.dll
-
Size
448KB
-
MD5
df44e3faf3245d41a80448e286756c20
-
SHA1
d8979e5505c1722bb1347afed58015e4c520a988
-
SHA256
887f596916906d455d1fa08076705aec38e85d28db0cece7081f513336a85153
-
SHA512
cd0e333b25ec6ea40a1147089cce9e96c6c94da88c5c1a087f4d24387bcda12f8d88e3b05ff0a8f40026e24fdf059270976d4379374f141e103a6c324a8abf05
-
SSDEEP
6144:ZLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZY5NMdHiVXj:ZLKo9PLecFTsU9m9E73FSRsnb6OOIj
Score1/10 -
-
-
Target
ddns-confgen.exe
-
Size
48KB
-
MD5
41730f55057492de87bca776fae93f85
-
SHA1
91714d49ea72db1f9b6b0b9a7ea57f33ac9b87fa
-
SHA256
aabb75e7d712e6c7bcbb826cbba1f13254473977d64ce32f203b18ff1f389ce8
-
SHA512
177e67e82346a6fe3182dd9ed5d5492872a966f06fb32383f18f5c73aca6b4f91526c93ca3138cc10197705fe728c389983cb32a0f1bce759a9a5f8caa821a67
-
SSDEEP
384:qRa5PweK8ZEhXl8AuIULuG3XZzsORZ5n0tK0Ay6vxwU5TPIXS+5Qy6oP:2a5PwCCl45nZznZ501AVmUBIcwP
Score1/10 -
-
-
Target
dig.exe
-
Size
148KB
-
MD5
9ae756358a815e74b076d8b30df6134c
-
SHA1
9892eec03048b63a2835165c29c012a24f2f8ecf
-
SHA256
478aa74c01b3230d401b2758fe624557248c0b70718b7eec698972881f479e18
-
SHA512
89bb6221b215c0775a47e82555734439d7ce5b13ed293ac2097767a1645890b82b427fd86d436517bfddaf4685164bd90e297624fd43a2c277b3384473263a46
-
SSDEEP
1536:Myysa98qrPwoNJcka+gzH0y5oXa61jaLzZ2K1rxfJjqmU9wG:Wsa98CYUwUyOXase92K1rxfJjqmU9w
Score1/10 -
-
-
Target
dnssec-dsfromkey.exe
-
Size
92KB
-
MD5
8e32ebd7459c0889327b01a4d56f3185
-
SHA1
db502a7b46fcaba7ad1b926e4d915b814f7f650b
-
SHA256
58676ed7eafbe0ee14fdd99d5122a3440dd73dcad4350ac4b09c87672456e27b
-
SHA512
8b7a33e439398e32583d5dc50a752a18f6d64fd78430de509c060c5caf4f2c9602b0394caef18d5fc667432800cd17ea0611cbe95387cad4926e2dc0b0c6372d
-
SSDEEP
1536:0KxzLpQsBiMjwIxUJfn1XnKbKy7OZ2WSerf08P/5FmU+uk25:TxzxQJfn1XnK77OZ2reT0835FmU+A
Score1/10 -
-
-
Target
dnssec-importkey.exe
-
Size
92KB
-
MD5
beb408701debf39db95129448cc122c2
-
SHA1
33aded9c6a9e7ebffe4369f299fb66131313f82d
-
SHA256
204df659e0413708dc5ce896e14fc90af53cb74c38ac135fdf1c97f124956ab3
-
SHA512
8f609ee9753d2b3e8d1108161ff09660d17aa589c5ac2ea662cbafd971504502f6e8981d34b5a3db86cb0425e3ea8db6284ec76bb4ab99f06734019300a2d262
-
SSDEEP
1536:dXjXEkNBeUxpyhI0+xW9zpSKSOZs/m/uvNL5FmUOnQ:iz9I0+xW9zdSOZUY4NL5FmUOn
Score1/10 -
-
-
Target
dnssec-keyfromlabel.exe
-
Size
96KB
-
MD5
2329cdabf6b4001736598bd0ffcc6b9d
-
SHA1
d4230cb1710d9c2730993b711cbb60eb1695d20f
-
SHA256
5576cc4c4b5eeeeb70fb57e8e0aef4ae9babaf4beb1559ec22a1d209c300d3e8
-
SHA512
695814b070d4c778cd27fb69efc8bad0cf9311f89d44339a060307ebdd1c6fe02d2d58dca78a955265e8cc97a0b6e1c6c19622c00cdc9e55e713db5aa7fbd249
-
SSDEEP
1536:wXL0LVfGjym4eYxV+DeNAv9mUkvOZfySUJZ3KWgXZ5imUCcy:wAhqRDeNAv92vOZfySUJZ3KWgXZ5imUC
Score1/10 -
-
-
Target
dnssec-keygen.exe
-
Size
104KB
-
MD5
cc0103bc3faf945087aa934073ada493
-
SHA1
94c35f16906547af0632b2225783cfd6fe1645e1
-
SHA256
a9c9fa348dea8b8cbbe44b7a29eafbfb26a79da6f00caf06795c0814d676f707
-
SHA512
da868581980e5c189dc6cf9d90376904470abb803e544a83cd4bcf47f041d366e4d4119b6d6c3cfa2fa9a5c156a477e3378543c2d358909415cecc8f60cf6356
-
SSDEEP
3072:FHlTXR8aFSGqOZK6uJZ3KWgsX9x5imUb:FHlLR8aEZOZZr
Score1/10 -
-
-
Target
dnssec-revoke.exe
-
Size
84KB
-
MD5
d9ca3acd7a13e7eb72dabf1533d96667
-
SHA1
c073263b731670a56859d4e3494ca7f325f986e4
-
SHA256
64ee18207a1ac19009a306d27b0c26bcdee6b1aaf8f5557e30f8264c0e6c2a62
-
SHA512
959c720324e40e1c0ecd5cc2a05a88524f149b6ff73e7681a3712b912d2b4cccce307330c0b818a95c285cc2dd5a395d28468a7aa0d98aff85e020f1ed7b7022
-
SSDEEP
1536:4WBsrwt5P8VLmgMLJ7L4nXOZr0uBX1s5CmUQh1w:4iZgMLJ7IXOZr0uBXW5CmUQh1
Score1/10 -
-
-
Target
dnssec-settime.exe
-
Size
92KB
-
MD5
7024214e1c8c884d6234706341cb0727
-
SHA1
3be63d3ed6264cfc36c2c3a64a6079b3081eb4d7
-
SHA256
af842682c5f85930cbf1a749931392209f458229413dd8a8395640e0f0986f45
-
SHA512
ef9a6e126d20e9037bac53994934962ddda8faa38d51cac9f9cd4cb160066868f901af5fb4fabc592676bb9ab2d5179c81559e370d4f7fe4076708b1b0bfb774
-
SSDEEP
1536:XCJXn4ioyGZSt+MZMyoHffYfbGL9OZfLAWKP5CmUBABO:Xnio3yoHYfS9OZfLAWKP5CmUBAB
Score1/10 -
-
-
Target
dnssec-signzone.exe
-
Size
160KB
-
MD5
8abbd5f05889a7afe0f0c7987ab0961f
-
SHA1
76955ac59478bc93bee9440e817cac5ec64236da
-
SHA256
ad7e0688f535cec0b5f9bd8e54894450b0bdd96731b0b9e92b52aa07a939fd31
-
SHA512
63a6f954a70b59790779fb409a1de87ea7eeb64575a544a8cf8fe7311f7a49849d36cde459165d3d158be179c3bc2aaa7c1028d4a7028f13dd4b0a2ce92b19fc
-
SSDEEP
3072:PUD5oZpngCJ4GbMUYOZ36oxZBoP+IQW59GUFzTZ:bZ3J4GwhOZKkWJ
Score1/10 -
-
-
Target
dnssec-verify.exe
-
Size
84KB
-
MD5
bb2f1fc6f1abef85a1d0112634eac8aa
-
SHA1
bc164209b8bd8aac50278d856a21aa34a7523ef0
-
SHA256
015be7754c756ecb540d335deb186e9ce6c444d994be6c5801343c6d0290937c
-
SHA512
7f6e4f3594a416331527fee57a8b2b21acb0978d6baa64560f0db8cc33bbfa9b21c8c30c0d47d7a71d61a796a03a86d4651025fe00a8bed07e9dbee463c20ef5
-
SSDEEP
1536:VrypMu+OfpVrLQKMFTDLS2tZcGc2OZ/tdAVzC59GU082a:VgxkFTDO2zq2OZ/t2VG59GU0
Score1/10 -
-
-
Target
genrandom.exe
-
Size
40KB
-
MD5
3b955aa4106961e0bbbe91c1102e9be9
-
SHA1
90407ce5a1ade6a8d864e0635018ca5297de9b43
-
SHA256
ed2e6cf70bdf572c5c89d101780fd28224b0131490acf2568456255a5dbdefe5
-
SHA512
13964bee7718a7009a6a2f98f5bf312fbfafc2084803805f42f4387c279ba332a0b1112a9f2780898f90cc50058d6b763e2dce82960cdd21e56fbd1d59013d9c
-
SSDEEP
384:X3vBCCjOU4RfHagcquzNWq4eLAWRPxwUbIWTieK6dP:X3vBKhrcjzzj5RGUDzNP
Score1/10 -
-
-
Target
host.exe
-
Size
128KB
-
MD5
b93311190fb746a66fb5891df20bd333
-
SHA1
482532f352a73fec76b6fc1ac6f81c4315eea473
-
SHA256
984e55b6d4ee9aa93c7f99d25b8955727d96ba23bd4b061995684a52495668bb
-
SHA512
5f2f7e4697263c6a0cc50499c23a57f73bba2cf8a1e1b875a6403c14da6418d6ab856e3d94a66c3cf67440cbd229df3f57128ebe74171330c121f96fd42966e2
-
SSDEEP
1536:PveLAG+MrYmDbtcLjx233fQmllj1rxfJcZGUc/78X:ep9Gjx23Pxlj1rxfJcZGUc/78
Score1/10 -
-
-
Target
isc-hmac-fixup.exe
-
Size
40KB
-
MD5
79b53c4f2fe7a0eb9b54f498c6e0441d
-
SHA1
7494b01b9dd265b361ac61b648ac73d17ac6cb04
-
SHA256
ab73591074f26585c7672c15d7c9356eaa2e58e678e18236f33d176e2fbfd12c
-
SHA512
56af70cd8b15f1947b873d7e699a175b8ad4b2f20af3ebf61b21f93b56dd63e5891b21f749a5b139c66c68e7a2a88011d651a553138350c7df37f2d234279b5c
-
SSDEEP
384:iZQ/K/tLJzr8YPfWjBuX6vxwUbT9YzRTs6oP:i0ctLJz/ubmUVYFWP
Score1/10 -