Overview

overview

10

Static

static

10

Hex-Rays I...te.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...da.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...ch.exe

windows10-2004-x64

1

Hex-Rays I...at.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...ph.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tCZ23JqIM8tQp5c.7z

  • Size

    304.5MB

  • Sample

    230704-17yl9abd71

  • MD5

    c8ccdedbfbd7d3fbf0cad3aafd680309

  • SHA1

    deeabd727319fb7f7edc7df520aa298c10e29ab2

  • SHA256

    48962632a1db28a8cbe5aa6b43a281afec742726bc7df7561b250e7911ea4c76

  • SHA512

    86c8a637af24e09a407208b493e28b6bd1bf06bfb59a1db9f9b9360c531e981bad32c693ae67d13a1a3595626f8f854ded8b45e281aad1d1b077ccc888c67f71

  • SSDEEP

    6291456:a7fC92VPwr/TjHftoPQ1olO1AwGXXVsZDaxw4O6pamCVEpHUnzFsw:a7dwr/TjVsQ1o2AwGVODaxwX62EJy

Score
10/10
industroyer

Malware Config

Targets

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/dbgsrv/win32_remote.exe

    • Size

      713KB

    • MD5

      ed16388d2796c93b705d6f4c98f16259

    • SHA1

      b546c201eb04d4ffdd9dd02d0925d7667b286541

    • SHA256

      4d0782fac17baa4b91c8ec36b2d28398656f9fbd858135be2d418323c1c6648f

    • SHA512

      ec9060adcfe0a3a9db19692f5f88402838cc6f5a286b34124c38cc9cf6ee45bc57dacedb9f432f5a705040d3af442fe27b02ac23da73452bec8c39cb93022274

    • SSDEEP

      12288:riygK09BFg1M7J8JjBGYaRCCm0qPZwtY6CpJg4Kg+3PuK3JhJ6LaT/D270gFU:rafOCmzwtY1EfuK3f8LaTb8P

    Score
    1/10
    behavioral1

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/dbgsrv/win64_remote64.exe

    • Size

      804KB

    • MD5

      9613938952c5e2991063309982f2ae58

    • SHA1

      aae4c44ec35960f3729142e0b64edac445d29227

    • SHA256

      bf229ad6affcd486910c5654e777dc586f7e806d14b1d6613e03dde26359f2cf

    • SHA512

      9bc1a6b96d577bf7d5b9157ebf64f281326440a2d9dd678205e446b6af81db9bcfb96f6c86e30c37bef683544743953d8ee46f89a3fbaf9f18cc94579c2ad8a5

    • SSDEEP

      24576:RDe8PcYcOoDekAMNHFZ5AXxu8PcXroThr0:JvXvMHFZmXoa+oT

    Score
    1/10
    behavioral2

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/ida.exe

    • Size

      4.0MB

    • MD5

      feb31c52b751255b3bd42a245b850110

    • SHA1

      b714ac4d8cc65d248f6be4a258be6b2e0386223b

    • SHA256

      ca77b4cf8e18d7b153a424e5591d759d5bdce0a5d4b9f21441dce67c32707ced

    • SHA512

      5aa93de0d3c0a97bc632b5ac5c9d0f05d62aacc2c4c825f840c6edc212361386a9b0914d7ad523ceb5e2d5db429c300297ff5111527e2d1780c75e57b6091ec7

    • SSDEEP

      49152:69EJ6ZQOajI9/7MlHrbh/MG7y72fl1cDQK0czmoPgqXfUnpzjfwRwaw5ArwuJyNp:4Zt8HyG7g2fly9ljwCqDolZEKuSmD

    Score
    1/10
    behavioral3

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/ida64.exe

    • Size

      4.0MB

    • MD5

      0b85f1f13b1a457f1d77f8e6f23fec47

    • SHA1

      fe1bc0abdc73eaa74dcb18b3ade959b91ea01df5

    • SHA256

      29341a543b744f72f0ff8ca973b5c3f31a23034879f267bba07149abf5e644f3

    • SHA512

      8921675f8f5b05db799b1528a088391509c4f5b919198f042ce781af2d61dc5ebe9627e935040627a73f1cf6390208bccf63cf174365dd8f0b368f8c10c79c4d

    • SSDEEP

      49152:+Qptxtn8v9flRURQXyczsoBR9RAzkdk9ltnv2UtxOpYjObpJWYcmD75zoELxnXAh:+itxMR4QuoBPRAzz9lRvMVtdwdZroVm

    Score
    1/10
    behavioral4

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/idapyswitch.exe

    • Size

      71KB

    • MD5

      896e63c20ca85737e90d32dda6004206

    • SHA1

      e3f117772b4d24ffc6413be08ff7ddb74ad8cc89

    • SHA256

      fda1967948657e7184f47a39bc3dc18c16ca3a0f7c087807723a4e9f55adbd98

    • SHA512

      7eb90072f209bf5c27458d79f09c6f111ef564db5fb9ba4f4e3399a70b1978ea5b86009b2ddeae7295507b906fc7f1f5128c493d86f5dd826b1f51802273fd6f

    • SSDEEP

      1536:amZJ7bsXCWaosxaOsqzQjjljGwsZ+J4OAWkrgOxAlb:eCL2FGD+Jherg4Alb

    Score
    1/10
    behavioral5

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/idat.exe

    • Size

      1.5MB

    • MD5

      26f9edef3c39c5d826a953711800cd74

    • SHA1

      48331606a4637552d30d37ba31465e3f3c7f71a3

    • SHA256

      d4345a0e6a6d04a4493d1235e89a63bba0106c1570c2a4bf4c33b5f7f3f7d243

    • SHA512

      85986ecce6e8a06b0b9631bae4d358fc809c900c4e90af4dd97d963a4ff1e8a6f0604af60aec7fe134fea37069930f926cabf6e3d1667d4d7fb02e697f2f8426

    • SSDEEP

      24576:kc032Z0CodVHkQ6WVIW8otvg2eYn1oTf96JEQjsdl+vw20DsE959N43dk03Bhlz2:k3tdVH6Wi7otReY1oT9yEQjQlM/0GRhJ

    Score
    1/10
    behavioral6

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/idat64.exe

    • Size

      1.5MB

    • MD5

      a281903a73582e5e404604936056fee9

    • SHA1

      8481210f0455e93410592c9a962e1256f7e57b23

    • SHA256

      be98f11869996aedd0a3e0ff86dca967dc0f8338215e301cb65c8fa02da41b57

    • SHA512

      92d33d73d530a62fd0a3fed0b737a2b3f10b3d8159fc309d5175abfab856141e9e08847b06dd9311507c367388e737c4a3c126e789f95393bf5cb76a0a5af09c

    • SSDEEP

      24576:j3d+13WxS/FfNEnAah1DE7JsyaXNqMUJozDpbQI5uRYOIVYZDzVyAU4tgVE56Kmg:j3s3tNEnbPw7JU9qMZZcouRYOol4tgWB

    Score
    1/10
    behavioral7

    • Target

      Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/qwingraph.exe

    • Size

      473KB

    • MD5

      3fb5202f388ca3ada3ab12fed5d7207e

    • SHA1

      4699eaab910b858086af99b907578ab4cc935dd9

    • SHA256

      287aba535fc5a304fc2cabbcabbe09f503bd80d7321ca0e45042e6229fce673a

    • SHA512

      e9698d7a6e1030c549325157e9e04a9c5efa453aaae753e92d2cec270fa57228b8ad069987275b56f8442cd68f8b6fc3245853c288ff74609bd20f823797344f

    • SSDEEP

      12288:XgSnO4ZjPUwXz2qDfMjZfCIKuh/42KLJ46:XgV4BNXiqDfMjZfCIKuS9L

    Score
    1/10
    behavioral8

MITRE ATT&CK Matrix

Tasks