anchordns | 3c26dd6817e143a4dd61ba134f037537da27d5df532840b721a5656e29111690 | Triage

Submit
Reports

Overview

overview

Static

static

d23b32b5d9...18.exe

windows7-x64

d23b32b5d9...18.exe

windows10-2004-x64

Sharing

General

Target

d23b32b5d9a1ddb4dace9c7f94f2c36b_JaffaCakes118
Size

272KB
Sample

240907-sns9eszdqk
MD5

d23b32b5d9a1ddb4dace9c7f94f2c36b
SHA1

46c595e580719a4c54f55b4041f81d6e50ab4062
SHA256

3c26dd6817e143a4dd61ba134f037537da27d5df532840b721a5656e29111690
SHA512

e1c7498f1a53d4280814e9e59cbbb33228261185c48289c16b554f3139a1404814fe1acd699f6899a0a2933781e87c7c54dea7a7d83a12edd71e46a14a5ed19d
SSDEEP

3072:s/YfCR8cbcx0zQUeGMw70JXiRdTqltV4JNyK5n8Q3nT:sgflCcx0zQC70A+VayKn3nT

Score

10^/10

anchordns backdoor

Static task

static1

backdoor anchordns

3 signatures

Behavioral task

behavioral1

Sample

d23b32b5d9a1ddb4dace9c7f94f2c36b_JaffaCakes118.exe

Resource

win7-20240903-en

anchordns backdoor

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d23b32b5d9a1ddb4dace9c7f94f2c36b_JaffaCakes118.exe

Resource

win10v2004-20240802-en

anchordns backdoor

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  d23b32b5d9a1ddb4dace9c7f94f2c36b_JaffaCakes118
- Size
  
  272KB
- MD5
  
  d23b32b5d9a1ddb4dace9c7f94f2c36b
- SHA1
  
  46c595e580719a4c54f55b4041f81d6e50ab4062
- SHA256
  
  3c26dd6817e143a4dd61ba134f037537da27d5df532840b721a5656e29111690
- SHA512
  
  e1c7498f1a53d4280814e9e59cbbb33228261185c48289c16b554f3139a1404814fe1acd699f6899a0a2933781e87c7c54dea7a7d83a12edd71e46a14a5ed19d
- SSDEEP
  
  3072:s/YfCR8cbcx0zQUeGMw70JXiRdTqltV4JNyK5n8Q3nT:sgflCcx0zQC70A+VayKn3nT
Score

10^/10

anchordns backdoor
- AnchorDNS Backdoor
  A backdoor which communicates with C2 through DNS, attributed to the creators of Trickbot and Bazar.
  backdoor anchordns
- Detected AnchorDNS Backdoor
  Sample triggered yara rules associated with the AnchorDNS malware family.
  backdoor
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

backdooranchordns

behavioral1

anchordnsbackdoor

behavioral2

anchordnsbackdoor

© 2018-2025

Terms | Privacy