industroyer | 018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81 | Triage

Submit
Reports

Overview

overview

Static

static

018eb62e17...81.dll

windows7_x64

8

018eb62e17...81.dll

windows10_x64

Sharing

General

Target

018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81
Size

74KB
Sample

220128-tbxlragbbk
MD5

ab17f2b17c57b731cb930243589ab0cf
SHA1

5a5fafbc3fec8d36fd57b075ebf34119ba3bff04
SHA256

018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81
SHA512

62aac7869c47f89a545eadb2a150181771e1accfe454673d81e3899447e907aae030beea31cfc66820f665fa5060190a6c8823dd6356fbe34af99eae7e4067ce

Score

10^/10

industroyer evasion persistence

Static task

static1

Behavioral task

behavioral1

Sample

018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81.dll

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81.dll

Resource

win10-en-20211208

evasion persistence

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81
- Size
  
  74KB
- MD5
  
  ab17f2b17c57b731cb930243589ab0cf
- SHA1
  
  5a5fafbc3fec8d36fd57b075ebf34119ba3bff04
- SHA256
  
  018eb62e174efdcdb3af011d34b0bf2284ed1a803718fba6edffe5bc0b446b81
- SHA512
  
  62aac7869c47f89a545eadb2a150181771e1accfe454673d81e3899447e907aae030beea31cfc66820f665fa5060190a6c8823dd6356fbe34af99eae7e4067ce
Score

10^/10

persistence evasion
- Modifies security service
  evasion
- Sets service image path in registry
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence

© 2018-2024

Terms | Privacy