Analysis

  • max time kernel
    127s
  • max time network
    137s
  • platform
    windows10-1703_x64
  • resource
    win10-20240611-en
  • resource tags

    arch:x64arch:x86image:win10-20240611-enlocale:en-usos:windows10-1703-x64system
  • submitted
    15-07-2024 23:44

General

  • Target

    Borat/Borat/bin/Information.dll

  • Size

    24KB

  • MD5

    87651b12453131dafd3e91f60d8aef5a

  • SHA1

    d5db880256bffa098718894edf684ea0dc4c335d

  • SHA256

    a15d72d990686d06d89d7e11df2b16bcd5719a40298c19d046fa22c40d56af44

  • SHA512

    1b911a877c5a3f508421f4f250d95861a5c110cb4b67ffe05de157085c5a018d34d9574c1ef4cf9eec3ba3cdd39985863564ea2f77814812032ea796cb329afa

  • SSDEEP

    384:zsvmkKbpmUGZdseXGvXhDYLuqInXx3McZ+RaYzwM3tllsXxMSDv:w+kKb0bZIqInpXZ+RtzAxMSj

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Borat\Borat\bin\Information.dll,#1
    1⤵
      PID:2180

    Network

    • flag-us
      DNS
      11.227.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      11.227.111.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      24.173.189.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      24.173.189.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      240.221.184.93.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      240.221.184.93.in-addr.arpa
      IN PTR
      Response
    No results found
    • 8.8.8.8:53
      11.227.111.52.in-addr.arpa
      dns
      72 B
      158 B
      1
      1

      DNS Request

      11.227.111.52.in-addr.arpa

    • 8.8.8.8:53
      24.173.189.20.in-addr.arpa
      dns
      72 B
      158 B
      1
      1

      DNS Request

      24.173.189.20.in-addr.arpa

    • 8.8.8.8:53
      240.221.184.93.in-addr.arpa
      dns
      73 B
      144 B
      1
      1

      DNS Request

      240.221.184.93.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.