Overview
overview
3Static
static
3BINDInstall.exe
windows7-x64
1BINDInstall.exe
windows10-2004-x64
1bindevt.dll
windows7-x64
1bindevt.dll
windows10-2004-x64
1dig.exe
windows7-x64
dig.exe
windows10-2004-x64
dnssec-keygen.exe
windows7-x64
dnssec-keygen.exe
windows10-2004-x64
dnssec-signzone.exe
windows7-x64
dnssec-signzone.exe
windows10-2004-x64
host.exe
windows7-x64
host.exe
windows10-2004-x64
libbind9.dll
windows7-x64
1libbind9.dll
windows10-2004-x64
1libdns.dll
windows7-x64
1libdns.dll
windows10-2004-x64
1libeay32.dll
windows7-x64
1libeay32.dll
windows10-2004-x64
1libisc.dll
windows7-x64
1libisc.dll
windows10-2004-x64
1libisccc.dll
windows7-x64
1libisccc.dll
windows10-2004-x64
1libisccfg.dll
windows7-x64
1libisccfg.dll
windows10-2004-x64
1liblwres.dll
windows7-x64
1liblwres.dll
windows10-2004-x64
1named-checkconf.exe
windows7-x64
named-checkconf.exe
windows10-2004-x64
named-checkzone.exe
windows7-x64
named-checkzone.exe
windows10-2004-x64
named-compilezone.exe
windows7-x64
named-compilezone.exe
windows10-2004-x64
Analysis
-
max time kernel
121s -
max time network
138s -
platform
windows7_x64 -
resource
win7-20231023-en -
resource tags
arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system -
submitted
07/11/2023, 14:25
Static task
static1
Behavioral task
behavioral1
Sample
BINDInstall.exe
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral2
Sample
BINDInstall.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
bindevt.dll
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral4
Sample
bindevt.dll
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
dig.exe
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral6
Sample
dig.exe
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
dnssec-keygen.exe
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral8
Sample
dnssec-keygen.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
dnssec-signzone.exe
Resource
win7-20231025-en
windows7-x64
Behavioral task
behavioral10
Sample
dnssec-signzone.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
host.exe
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral12
Sample
host.exe
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
libbind9.dll
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral14
Sample
libbind9.dll
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
libdns.dll
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral16
Sample
libdns.dll
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
libeay32.dll
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral18
Sample
libeay32.dll
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
libisc.dll
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral20
Sample
libisc.dll
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
libisccc.dll
Resource
win7-20231025-en
windows7-x64
Behavioral task
behavioral22
Sample
libisccc.dll
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
libisccfg.dll
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral24
Sample
libisccfg.dll
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
liblwres.dll
Resource
win7-20231020-en
windows7-x64
Behavioral task
behavioral26
Sample
liblwres.dll
Resource
win10v2004-20231020-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
named-checkconf.exe
Resource
win7-20231025-en
windows7-x64
Behavioral task
behavioral28
Sample
named-checkconf.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
named-checkzone.exe
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral30
Sample
named-checkzone.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
named-compilezone.exe
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral32
Sample
named-compilezone.exe
Resource
win10v2004-20231023-en
windows10-2004-x64
General
-
Target
BINDInstall.exe
-
Size
2.1MB
-
MD5
e4c3b9b75c0df86bd29722a67062d5aa
-
SHA1
248053686c8f466bd92b8b7a66e024c6af0df53c
-
SHA256
dc8176e50e70d41915f77475e6539708beccccd2f0edb89809858ce6848a824b
-
SHA512
af8045d15dee2fa70c89c7a4a9c5094370daa69f468c885da8b5a10c175a8cd21e9411e271867e4a2ae987dd87b611b2630e325e4bcbb89ca9c5408f01f11c29
-
SSDEEP
24576:m2WQo3uzJpw7319seufXO5LrT1KufsJdesSGvejsuePaTNaN:TWCLUF7Kbbe0a
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 2632 BINDInstall.exe 2632 BINDInstall.exe