Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

dig.exe

windows10-2004-x64

dnssec-dsfromkey.exe

windows7-x64

dnssec-dsfromkey.exe

windows10-2004-x64

dnssec-key...el.exe

windows7-x64

dnssec-key...el.exe

windows10-2004-x64

dnssec-keygen.exe

windows7-x64

dnssec-keygen.exe

windows10-2004-x64

dnssec-signzone.exe

windows7-x64

dnssec-signzone.exe

windows10-2004-x64

host.exe

windows7-x64

host.exe

windows10-2004-x64

libbind9.dll

windows7-x64

1

libbind9.dll

windows10-2004-x64

1

libdns.dll

windows7-x64

1

libdns.dll

windows10-2004-x64

1

libeay32.dll

windows7-x64

1

libeay32.dll

windows10-2004-x64

1

libisc.dll

windows7-x64

1

libisc.dll

windows10-2004-x64

1

libisccc.dll

windows7-x64

1

libisccc.dll

windows10-2004-x64

1

libisccfg.dll

windows7-x64

1

libisccfg.dll

windows10-2004-x64

1

liblwres.dll

windows7-x64

1

liblwres.dll

windows10-2004-x64

1

named-checkconf.exe

windows7-x64

named-checkconf.exe

windows10-2004-x64

Analysis

  • max time kernel
    12s
  • max time network
    51s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:33 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\host.exe command="C:\Users\Admin\AppData\Local\Temp\host.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Report Analysis Logs

General

  • Target

    host.exe

  • Size

    120KB

  • MD5

    727fa9664ed6e9e860b47b55dedfd1c1

  • SHA1

    7cb22d267a1ac4e018d86a2d239b1dca6562f543

  • SHA256

    97fc27ec3919090a85d2bd85d5d90093e06e97a357f8ebf509c7323e9b4980d5

  • SHA512

    d1367cfa11e6d6a7b4d668cb5c0a6cabc091c021061fc745950f1dd4da5e5e70eb2cc71f128ae50bd1bd33408df2eb4204abf4c1edbee053be9fbe575f2c4ba4

  • SSDEEP

    1536:zfdPhywjar6A68ea6eRAIxXOAnMi0sSyWWxD3FGUcxO:xjaq8O7QXOAnV0sSyWWxD3FGUcx

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\host.exe
    "C:\Users\Admin\AppData\Local\Temp\host.exe"
    1⤵
      PID:2688

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2688-0-0x0000000000400000-0x000000000042F000-memory.dmp

      Filesize

      188KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.