industroyer | ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910 | Triage

Submit
Reports

Overview

overview

Static

static

ad23c7930d...10.exe

windows7_x64

8

ad23c7930d...10.exe

windows10_x64

Sharing

General

Target

ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910
Size

75KB
Sample

220128-rv7vqaeebr
MD5

7a7ace486dbb046f588331a08e869d58
SHA1

b92149f046f00bb69de329b8457d32c24726ee00
SHA256

ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910
SHA512

0dc9d36b727e1a79df7b60648fa35a74a9e0d705cfde274606b68d6770e2fd04e7438d09b5be6f5be135f7192114438b99246b617e64144c36b5df7fb81fbd2d

Score

10^/10

industroyer evasion persistence

Static task

static1

Behavioral task

behavioral1

Sample

ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910.exe

Resource

win10-en-20211208

evasion persistence

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910
- Size
  
  75KB
- MD5
  
  7a7ace486dbb046f588331a08e869d58
- SHA1
  
  b92149f046f00bb69de329b8457d32c24726ee00
- SHA256
  
  ad23c7930dae02de1ea3c6836091b5fb3c62a89bf2bcfb83b4b39ede15904910
- SHA512
  
  0dc9d36b727e1a79df7b60648fa35a74a9e0d705cfde274606b68d6770e2fd04e7438d09b5be6f5be135f7192114438b99246b617e64144c36b5df7fb81fbd2d
Score

10^/10

persistence evasion
- Modifies security service
  evasion
- Sets service image path in registry
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence

© 2018-2024

Terms | Privacy