Overview
overview
3Static
static
3BINDInstall.exe
windows7-x64
1BINDInstall.exe
windows10-2004-x64
1bindevt.dll
windows7-x64
1bindevt.dll
windows10-2004-x64
1dig.exe
windows7-x64
dig.exe
windows10-2004-x64
dnssec-dsfromkey.exe
windows7-x64
dnssec-dsfromkey.exe
windows10-2004-x64
dnssec-key...el.exe
windows7-x64
dnssec-key...el.exe
windows10-2004-x64
dnssec-keygen.exe
windows7-x64
dnssec-keygen.exe
windows10-2004-x64
dnssec-signzone.exe
windows7-x64
dnssec-signzone.exe
windows10-2004-x64
host.exe
windows7-x64
host.exe
windows10-2004-x64
libbind9.dll
windows7-x64
1libbind9.dll
windows10-2004-x64
1libdns.dll
windows7-x64
1libdns.dll
windows10-2004-x64
1libeay32.dll
windows7-x64
1libeay32.dll
windows10-2004-x64
1libisc.dll
windows7-x64
1libisc.dll
windows10-2004-x64
1libisccc.dll
windows7-x64
1libisccc.dll
windows10-2004-x64
1libisccfg.dll
windows7-x64
1libisccfg.dll
windows10-2004-x64
1liblwres.dll
windows7-x64
1liblwres.dll
windows10-2004-x64
1named-checkconf.exe
windows7-x64
named-checkconf.exe
windows10-2004-x64
General
-
Target
d767115e4e22bdae5459b4529bd35322c79914875c8ac643f489b482d9160a21.zip.zip
-
Size
11.5MB
-
Sample
231107-rt2x3she6t
-
MD5
9b25fb5638d2620874351b5cf9761a5d
-
SHA1
5c258d3b32f3a94ab1ee495b962a695ad54cbd7e
-
SHA256
aa4ff6b03e2b22f226a68619c989741b347bd5d368572cf2b44de9f26391dab4
-
SHA512
bdb56528be95c97ade1b15b0f11f1031c34a7b05b45971f57692821902a7b52dc19e5b9ea8879510b109933bad554395aa5d4bae357ba9a8f9c70101f199b05f
-
SSDEEP
196608:z0q7cO9CR/Z0+4C4TGzPwkwdyJZjvBb5HseCt1HSqMvLfFyKpMfyaAXneLG/qVpq:gq7cPZV4p4ok9Dl5sxtmrIIMfy0Vpq
Static task
static1
Behavioral task
behavioral1
Sample
BINDInstall.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
BINDInstall.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral3
Sample
bindevt.dll
Resource
win7-20231020-en
Behavioral task
behavioral4
Sample
bindevt.dll
Resource
win10v2004-20231020-en
Behavioral task
behavioral5
Sample
dig.exe
Resource
win7-20231020-en
Behavioral task
behavioral6
Sample
dig.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral7
Sample
dnssec-dsfromkey.exe
Resource
win7-20231025-en
Behavioral task
behavioral8
Sample
dnssec-dsfromkey.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral9
Sample
dnssec-keyfromlabel.exe
Resource
win7-20231025-en
Behavioral task
behavioral10
Sample
dnssec-keyfromlabel.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral11
Sample
dnssec-keygen.exe
Resource
win7-20231023-en
Behavioral task
behavioral12
Sample
dnssec-keygen.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral13
Sample
dnssec-signzone.exe
Resource
win7-20231023-en
Behavioral task
behavioral14
Sample
dnssec-signzone.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral15
Sample
host.exe
Resource
win7-20231020-en
Behavioral task
behavioral16
Sample
host.exe
Resource
win10v2004-20231023-en
Behavioral task
behavioral17
Sample
libbind9.dll
Resource
win7-20231023-en
Behavioral task
behavioral18
Sample
libbind9.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral19
Sample
libdns.dll
Resource
win7-20231025-en
Behavioral task
behavioral20
Sample
libdns.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral21
Sample
libeay32.dll
Resource
win7-20231020-en
Behavioral task
behavioral22
Sample
libeay32.dll
Resource
win10v2004-20231025-en
Behavioral task
behavioral23
Sample
libisc.dll
Resource
win7-20231023-en
Behavioral task
behavioral24
Sample
libisc.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral25
Sample
libisccc.dll
Resource
win7-20231023-en
Behavioral task
behavioral26
Sample
libisccc.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral27
Sample
libisccfg.dll
Resource
win7-20231020-en
Behavioral task
behavioral28
Sample
libisccfg.dll
Resource
win10v2004-20231020-en
Behavioral task
behavioral29
Sample
liblwres.dll
Resource
win7-20231020-en
Behavioral task
behavioral30
Sample
liblwres.dll
Resource
win10v2004-20231023-en
Behavioral task
behavioral31
Sample
named-checkconf.exe
Resource
win7-20231020-en
Behavioral task
behavioral32
Sample
named-checkconf.exe
Resource
win10v2004-20231023-en
Malware Config
Targets
-
-
Target
BINDInstall.exe
-
Size
2.1MB
-
MD5
0b710cf09a6c601a119ab22d9d658d37
-
SHA1
e23aa7a107278a91b0bd44e26a264c4dfcd4fd32
-
SHA256
a98d67f71678f41e9ba8c56ec7681314d3e83a463c9b89dc221ca551b03ceb5f
-
SHA512
a6f08da08e48b2f59b8ce98bcf8e8687e3867e0127a6ea1dd0cdc25bc0749b98b831db865d96c937b15bebe350a341b8d693bf1b61e8fb6abe2db977c8b589bf
-
SSDEEP
24576:n8nj2P3Ec9uaYf/OPFaB2qU4RozCMBaW3592kIg4zdb:nICH9OnJqzRD9k
Score1/10 -
-
-
Target
bindevt.dll
-
Size
448KB
-
MD5
5a7cd511bba39169d1c164211d612007
-
SHA1
a8d7e47e982fc02f49ec9940bd154d38d60992ec
-
SHA256
9f291fd154bb6c773b6b22ce471f50b84c8e6da80d6b41baac56d564a7af190a
-
SHA512
9429d1f951b9bd7c7f85a8af522eec10881bd012eba6d4ea7eee45fb6452e229b0a4b7e393bf375f3446dd40687ccae11fcb70c52e7be349ae1fdd1c265fde74
-
SSDEEP
6144:yLyto9KMLecTR/bsUpbm97VQ8873FKBkDORsnb6ZYVh6dHiVXj:yLKo9PLecFTsU9m9E73FSRsnb6uAIj
Score1/10 -
-
-
Target
dig.exe
-
Size
144KB
-
MD5
c988a02b28af5aa59908bd07eba77ce4
-
SHA1
eab39fa6fde9c3bcae7b893d3694bd8a87d3e0fd
-
SHA256
b2e4c8b4775bf3e7c1d37b926fed3623b0913b5104cd4647460bb6b0a25e54ec
-
SHA512
8f41f9ce1cb9a1b21e8054bad3687f2e4f324182ec858d82de2cf581ee852c55d425dcd903acf7410453323df85e4e9602561fbc423456fd8f53846cc038285e
-
SSDEEP
3072:KDmHKgUJkdMZ7+mD4Ukp9W0utmVE0KOqrLF0/ZEYGixj2pgmUd:MkdMXJOqrLINj2a
Score1/10 -
-
-
Target
dnssec-dsfromkey.exe
-
Size
60KB
-
MD5
89c2821642acdfd1415f82aea03b7d0a
-
SHA1
4a8fed96453a5957ae19bcb9cd1df78860bdc87c
-
SHA256
f22f496fc5f47aca9c58654a85e7d29238772cbab5406d1a7bad1bbc4a513bf0
-
SHA512
58b6cae86efd6877634f7e2679b183dcc16841be3f83d97c56be37f29fb029f2d3df8bfeb37407dfba45a455905f72483e6b7b0dd86de70afe12ca7067ba42a6
-
SSDEEP
384:rtHQo08f9wz8/Ir/B1lKpiLRLrJbzhuPTMryvI08J6vxwU5JPiU0dAZy6oP:Z5ahrJaMLRLrJbzEgXJEmUviU0MwP
Score1/10 -
-
-
Target
dnssec-keyfromlabel.exe
-
Size
56KB
-
MD5
1ea7c445873cb5970503b975436ecb2c
-
SHA1
c28ba111a6047a745d66a8d982f31cc786fcc57a
-
SHA256
a6e1daad7fec5b0a2f2abdc128666aad5f02278c539e2e6b33b6a8aa6370ec2b
-
SHA512
a19652e78e4f17795e915a244086e894a058beb444c9ffc2f76745a27d2cc766f1e5b659a4c8ed164f0b737663481b469bbf379acc1d7181f3311c795117ad0c
-
SSDEEP
384:gckl/uzu9QtSdYwckryQJu6ioOzizFzdBP2aruK1s6vxwU56BfUZy6oP:Il/B9Q7krr6wzFzD+cmUwawP
Score1/10 -
-
-
Target
dnssec-keygen.exe
-
Size
68KB
-
MD5
57a178c79ea56ebf0bdea912754b77f3
-
SHA1
a99c0e3b553c8b9c7eb2aef27018dd6d1e64fc30
-
SHA256
b11454f003c774d8062802a97acff85d4d09cb9df1838730226781ca0780d47e
-
SHA512
93ff56e7814f17cb6e6e00b4b585edaebdb07fdff6259ca3f9c939a096178140f556ae0526b21854f52fdbede2787dc200f8116880b36736170767aeb27bb070
-
SSDEEP
384:BAyq1ghj5PEM19R41hPpzf9iI+BgR6RCxTCyfxd1nEl9pED44JjzkHVv7WGE0R1q:BfitR6RhK/2MJjzqvSu1lmUUiwP
Score1/10 -
-
-
Target
dnssec-signzone.exe
-
Size
124KB
-
MD5
1f8384707e9d7ecf7c9ed1565081d923
-
SHA1
e023c750bac3fd65422a0b2c5b915e57639b0dfd
-
SHA256
d72c3790e710224c0656459be90cd1f3b7e8cec53273b750e1bceed768142dfd
-
SHA512
e0adfb65d914883c054cbf1ceb2380d165e486b5a7fa3a273b9f5d8915f76665352c2ebebb8e6a77f525881ba958476ae70b0c01120fcb7250ea8d305b2251d3
-
SSDEEP
1536:9WvhiL5AtlmWUh15JewdvgN2QMH6mmnzHHLXW/goWRfOs425eamUZrp:sQ7Fl/goWROs425eamUZr
Score1/10 -
-
-
Target
host.exe
-
Size
120KB
-
MD5
a843840fde29cef49923ca85699e23ec
-
SHA1
b3019b293a2389685d83273677dda1a76a3fdc56
-
SHA256
4daa49573647c0b3fb6837babc86c25c99427f8e1117c5e39a9fcbd28827cced
-
SHA512
b0867f6ae3ac398c2303268e6c2b1810e19990392a0424a424feb7d29a7ad1cb6bc0a7fff18c5c752597a471cca9335acb3dbd08f47a094b08c7d3209eab65a1
-
SSDEEP
1536:YN1oDKxPrxIG5VDx343jCBxmeEQBftdF1ixjG2TGUL5gr:olI8ACBxmeEKtdF1ixjG2TGUL5
Score1/10 -
-
-
Target
libbind9.dll
-
Size
88KB
-
MD5
fedd26508dcb1eabf81c740445f21920
-
SHA1
4fbc709326f0319e33e2280f4342d48636e6d600
-
SHA256
c9a303536c09d1cd0a408b9ee7d9f7492942aa3996c93b9a8160004a36abb3ef
-
SHA512
380e9f1ab195dc9742f05fd0a749088163b701d3c9c7c5158e2aa8fcdd9d78cfa51c9cd61e1e3e09ef4bdb6a17d2e8a692e0b80c8a3983c773f213bc788e6489
-
SSDEEP
1536:2MiymAUX0Tdy5EQwNsZxFViGshnEGUevUBrO:finAUX0T0+QwgxDiL2GUevCy
Score1/10 -
-
-
Target
libdns.dll
-
Size
2.2MB
-
MD5
e65d0e10d9693134eca7fca75f30ef5d
-
SHA1
988d47fa5afc27170041e961fa37c132abce7852
-
SHA256
b76e590042fb9415f82668571273f01c7d33009517d3fcece36a913ea089469b
-
SHA512
0097b6e56aa8305da2e8c958c56e7d9d3d835880f0ce3308642d6079f0fbeb5fbcfab555ff2877d6b954780a68987512573e1dbb796890cc410f450ee888cdb7
-
SSDEEP
24576:8dKoyXbFVBFhZH2xN6QV/vsHoRwBo7xEFH3WRhFDOX2eh7Lgtm70+nh0TahUOKeX:DLTHYX50ibhLzfsPeWmb5
Score1/10 -
-
-
Target
libeay32.dll
-
Size
1.2MB
-
MD5
ec31b514b68aa36332262664f9731608
-
SHA1
09047bc3670d8510177e74962a9d8039942f9ae9
-
SHA256
6eb24ad19930c168d2b30c449ae36b05cd2ce3b0f82c9617decef92c6e560c10
-
SHA512
3417e1badf5fe4c7cb5b4e9843918709f2182f19a9b094f7f536000f125660a6239f066587ed6d4c897ff7e0f9646a886123f7a9d5a467421f509be60bea7e39
-
SSDEEP
24576:bc9S/ssux9hMqgXaoomO1+6SfCY+LaBnBPX7Fp10e2uW2VZoS3tL:JyNgKHmO1+p+Mf7Fp10e2uNVKS3tL
Score1/10 -
-
-
Target
libisc.dll
-
Size
480KB
-
MD5
9b16d6300393288153b49cfa74a1e303
-
SHA1
e3fdffc25271f3592973cb42946c20a007182a42
-
SHA256
3204a776e0cce9a6e8fdf8e540964d67ae31b473d3c8b3d66ec6bcccb629405c
-
SHA512
3dd1d89bf31c571a375b317fab78203a0efd6399318f54b58b2c3a451f2e0e96a8e860281f65c525b8e8d8edabde4d32b874a7da4ad174536086679c4b10a28b
-
SSDEEP
12288:HdDSbzpJAwUE7rTb+6W43Z7EkOcAhjkz2/Tj:CSkOnhISbj
Score1/10 -
-
-
Target
libisccc.dll
-
Size
72KB
-
MD5
deef80b126d754798dc6797e57afadda
-
SHA1
96a9bc1e3f8e3238dec7c54a56400a0b1e88799d
-
SHA256
59746b977b18857f937736e00012b8f63a4fc6d7ad7eb8a15b047966ab503acb
-
SHA512
0c9867fd0ef3f324334794c618ae798f42222df9177314a131baa0864d387d65374ba6b1ce9cecf137a4b880efaf6cc98afb0c0767069a63ff6679ae877d9de6
-
SSDEEP
1536:QJbGoVZuAifBvoPn540Dk1hs90+JVHtK3OZTlcueBX3vPmUBL+Fj:E9DifBvoPn54Gk1hs90+JRtK3YTlneBy
Score1/10 -
-
-
Target
libisccfg.dll
-
Size
116KB
-
MD5
12040e924bb944274d02e4b4a018108c
-
SHA1
737a57474c3ddb77295a2967bc5ca4200c8d6b96
-
SHA256
57883f8e90b04a9ffede0f04e11289b99992eead15f400ac1e80ec0cf5653d9f
-
SHA512
8d1a1cd95a476391c007497f35c8719ad81a70811960b137e3505619ec4b049b9776085ac7f007284d6886e37f77e4dd73b960edf22f1f00a230c08727c2686a
-
SSDEEP
1536:viZ37IhgRCCJV8P8fhgO7V/rg2Ut8KXs4mUb+CgQqjAq6H:KZ37CgRCC/80f+EO2Ut8mmUb88n
Score1/10 -
-
-
Target
liblwres.dll
-
Size
124KB
-
MD5
3157a63361e6cc7a270406cab07eacd0
-
SHA1
dee5fb46d2d93f1d7a3c565ab75dc074f0ef4b49
-
SHA256
3a03c241c4f2c3a823f7b54a4b62ae1709a6b2139b4f8efe54ce35a15d1ec339
-
SHA512
6f486f6acf9adf7d5aa8db43cb825e32531e0167a2d5b48389f5a5b78b9f027d046d13fe68ae71262c50c054d3de15039a7225be9f564b441724134deccc92b2
-
SSDEEP
3072:dWvwXNu361RjL66VuWEXpkfSwy2kk87DpXiAA2QSaJVmUVe:dPXNI61RjL6Eu14y
Score1/10 -
-
-
Target
named-checkconf.exe
-
Size
64KB
-
MD5
c4bf77f7223b0b399ed611476201aacb
-
SHA1
a2a951d574eea720bd42c28b4b4c52a0fb1c7aed
-
SHA256
4c8075a1bc56597d55b77a30bd3a37cdf3d552ae1cad48534084be3d5abcfcce
-
SHA512
e745d65f73250e3f1ade81acd7552c01fe072cdcd20976fea09d9723d1482b668e1738c975d49dcb6968f131220ee014a269d4768206cccb7c0daa24cbbbbb53
-
SSDEEP
768:lA6DA52Bvs3Fczae9SLt7GUYps8JzpPP:lrkcwh7GUYpsuzl
Score1/10 -