industroyer | 33b311de8af4ec8d35462fffab89350f7d08277bcc98dda6fb148eff8cc36884

Sharing

Copy URL

Twitter E-mail

General

Target

IDA Pro.zip
Size

370.7MB
Sample

240118-y2m78ageeq
MD5

b7fc765034c9c9e1a8262c3c54bd668b
SHA1

848569210f7b558c50916df8fe89fb01fe347905
SHA256

33b311de8af4ec8d35462fffab89350f7d08277bcc98dda6fb148eff8cc36884
SHA512

bc4663af3662685e7e05fac2fcfa2e6e57ba57aee613ea59b79bcf7522dd88ab7ccb42a835ee6d667e3db9f8579d6f694d9a117710d72ebc5ec7e8b91c915761
SSDEEP

6291456:9Zzcn8Umz/fLt4z12nNtnkyMOZW5V6ejKATeWZl7XUO5M9EhtA57jbB5N6dOFA3I:zz08UK/DqANtn3BWqejKAT5ZlLUO5M++

Score

10^/10

industroyer

Malware Config

Targets

- Target
  
  IDA Pro/dbgsrv/win32_remote.exe
- Size
  
  713KB
- MD5
  
  ed16388d2796c93b705d6f4c98f16259
- SHA1
  
  b546c201eb04d4ffdd9dd02d0925d7667b286541
- SHA256
  
  4d0782fac17baa4b91c8ec36b2d28398656f9fbd858135be2d418323c1c6648f
- SHA512
  
  ec9060adcfe0a3a9db19692f5f88402838cc6f5a286b34124c38cc9cf6ee45bc57dacedb9f432f5a705040d3af442fe27b02ac23da73452bec8c39cb93022274
- SSDEEP
  
  12288:riygK09BFg1M7J8JjBGYaRCCm0qPZwtY6CpJg4Kg+3PuK3JhJ6LaT/D270gFU:rafOCmzwtY1EfuK3f8LaTb8P
Score

1^/10
behavioral1 behavioral2
- Target
  
  IDA Pro/dbgsrv/win64_remote64.exe
- Size
  
  804KB
- MD5
  
  9613938952c5e2991063309982f2ae58
- SHA1
  
  aae4c44ec35960f3729142e0b64edac445d29227
- SHA256
  
  bf229ad6affcd486910c5654e777dc586f7e806d14b1d6613e03dde26359f2cf
- SHA512
  
  9bc1a6b96d577bf7d5b9157ebf64f281326440a2d9dd678205e446b6af81db9bcfb96f6c86e30c37bef683544743953d8ee46f89a3fbaf9f18cc94579c2ad8a5
- SSDEEP
  
  24576:RDe8PcYcOoDekAMNHFZ5AXxu8PcXroThr0:JvXvMHFZmXoa+oT
Score

1^/10
behavioral3 behavioral4
- Target
  
  IDA Pro/ida.dll
- Size
  
  4.1MB
- MD5
  
  d5e960ffde42e89894753b68608442b4
- SHA1
  
  8b901a0ba3d0a36891244ab3bada7ed24e046778
- SHA256
  
  013235cbb26e7d5131b5c589c895beaed595052254f094ece42bc4a77fbc446b
- SHA512
  
  b87f5c55ab59baa224bcd19c4258475bff909c148ab206eea564c8c265d58c57f2d17624fe33a40480048d559c0aa0722f80a4e0ef6ad039c9b9ab11cd470b9c
- SSDEEP
  
  49152:X4ie0OLY7SMEAuDKQ3wNhdaG/GECAXjJVGnEWukv+N3yVYCazzrOPYubrmarAMFU:X4OGejwuXN3y+CqYYuHvq
Score

1^/10
behavioral5 behavioral6
- Target
  
  IDA Pro/ida.exe
- Size
  
  4.0MB
- MD5
  
  9d6d3e344709427ab731813f88a739e1
- SHA1
  
  407f520ea5dbf4480fa331b72183b40c3ae76766
- SHA256
  
  016b7a713b52b20123ac3100ab0347daa2e6def4249dc6c5490f1ec2954ed4cc
- SHA512
  
  fb3d10e6745023d3a858e9dafb7701bf9c5cedacbfc5243a5ae885e7b5a2d3855a18c2565c7c35237e30f6479ca842ff3e9b68e964e03b7ea643100312548e43
- SSDEEP
  
  49152:p9EJ6ZQOajI9/7MlHrbh/MG7y72fl1cDQK0czmoPgqXfUnpzjfwRwaw5ArwuJyNa:RZt8HyG7g2fly9ljwCqDolZEKu1mD
Score

3^/10
behavioral7 behavioral8
- Target
  
  IDA Pro/ida64.dll
- Size
  
  4.2MB
- MD5
  
  36e4a1a33c5b557ebfe9750990f866dd
- SHA1
  
  b68596cf0978c7cd349eb10251d2763c6f60e558
- SHA256
  
  d35e714949504f1da5e894cdedfffeff93f3b02ab8063a815d9f96b9ca064c1f
- SHA512
  
  88b4a3d34db82a81c7f2fffa88167dcd70bb8933e553dd87670bb75e46f20731e89639b698f492d9213dc5c550b5115baf4e478da7f529ca9499d78addaee800
- SSDEEP
  
  49152:L26gm5RpmkLsUbjeK0Ah0cqJgIeXkfWLZWR2070bdVcPvc+yyxiDNZjaTbylizSq:M/U+MJYgos+P+NZjlK7
Score

1^/10
behavioral10 behavioral9
- Target
  
  IDA Pro/ida64.exe
- Size
  
  4.0MB
- MD5
  
  24ba0b4e0a3445a6c2fb866d94669f05
- SHA1
  
  3b6bf89f5ec4b19266260fd488ae720a90f1865d
- SHA256
  
  70840575ebddb25412f6de60329d5d395b325b709df9202411b723d0744c9624
- SHA512
  
  dcbd7babaa0de562a0a6682c3c0b053c419ddc2e78d6a0213c081a5ca50a256a720d0c6cbf3b2de669a5410918dfeb2d7d4fc29b23ae3285103c8e3c2be8b2b0
- SSDEEP
  
  49152:GQptxtn8v9flRURQXyczsoBR9RAzkdk9ltnv2UtxOpYjObpJWYcmD75zoELxnXAm:GitxMR4QuoBPRAzz9lRvMVtdwdZro6m
Score

1^/10
behavioral11 behavioral12
- Target
  
  IDA Pro/idat.exe
- Size
  
  1.5MB
- MD5
  
  26f9edef3c39c5d826a953711800cd74
- SHA1
  
  48331606a4637552d30d37ba31465e3f3c7f71a3
- SHA256
  
  d4345a0e6a6d04a4493d1235e89a63bba0106c1570c2a4bf4c33b5f7f3f7d243
- SHA512
  
  85986ecce6e8a06b0b9631bae4d358fc809c900c4e90af4dd97d963a4ff1e8a6f0604af60aec7fe134fea37069930f926cabf6e3d1667d4d7fb02e697f2f8426
- SSDEEP
  
  24576:kc032Z0CodVHkQ6WVIW8otvg2eYn1oTf96JEQjsdl+vw20DsE959N43dk03Bhlz2:k3tdVH6Wi7otReY1oT9yEQjQlM/0GRhJ
Score

1^/10
behavioral13 behavioral14
- Target
  
  IDA Pro/idat64.exe
- Size
  
  1.5MB
- MD5
  
  a281903a73582e5e404604936056fee9
- SHA1
  
  8481210f0455e93410592c9a962e1256f7e57b23
- SHA256
  
  be98f11869996aedd0a3e0ff86dca967dc0f8338215e301cb65c8fa02da41b57
- SHA512
  
  92d33d73d530a62fd0a3fed0b737a2b3f10b3d8159fc309d5175abfab856141e9e08847b06dd9311507c367388e737c4a3c126e789f95393bf5cb76a0a5af09c
- SSDEEP
  
  24576:j3d+13WxS/FfNEnAah1DE7JsyaXNqMUJozDpbQI5uRYOIVYZDzVyAU4tgVE56Kmg:j3s3tNEnbPw7JU9qMZZcouRYOol4tgWB
Score

1^/10
behavioral15 behavioral16
- Target
  
  IDA Pro/plugins/unpack.dll
- Size
  
  12KB
- MD5
  
  e17601ec08926935d1fde65812bfca3b
- SHA1
  
  8411cf2360de0a48b9bc882f8124c4af885ce819
- SHA256
  
  8f3918710fd20af6b6f1da3a27897912d5c91577e15baa2b46920f9c731ff0f8
- SHA512
  
  1d8fefd11fb08016be59d45999b51213472313a287d1b9ee54d70cc2e0dc669014c83625329d64c3fc4f95604d86e008beec457e26daea9f0e689a3606d9d489
- SSDEEP
  
  192:qNBTRRF8XpZgaDXTJTwlSo4Bv++AH8kX:CBTRROXpZz3o+yH8A
Score

1^/10
behavioral17 behavioral18
- Target
  
  IDA Pro/plugins/unpack64.dll
- Size
  
  12KB
- MD5
  
  cded9b071b155045fe26bfc8f180f0ae
- SHA1
  
  67fbe5a9b94429b5a963c5e5878b7c383fde22cc
- SHA256
  
  5693191f34e2a790da6c2e9d39c40a3c002b3c340a041e1cad57c7444c933e3a
- SHA512
  
  6a7b3c9ac0f441b0b9ac7e91886b7343f0a25132e298b47da02a4d4bf59922e3d562e62285f8fe4ba31b07333d17ed4e0f0741a6bad36ebb5bdb3c943cf1d124
- SSDEEP
  
  192:afvuVXlTRRUTp8XYTqCekm3gRSbA/szLs+AH8:oAXlTRRUWXJz0/osH8
Score

1^/10
behavioral19 behavioral20
- Target
  
  IDA Pro/plugins/uunp.dll
- Size
  
  33KB
- MD5
  
  b082345f707ed7e2b798cd5c07a92fda
- SHA1
  
  454dab2e61f9019cb77ceae9ccb6fb12221463fe
- SHA256
  
  360340677523f0e8413c000881db4558614139df1b4bf0811a637bd258ce2122
- SHA512
  
  574c2007d581efff122c0d76df5274a03489d56fddd7b2f32d8a14a4b43c5802afc12d97d581032c69d2b4a46d0be21e858205afc3ce10330e81d968adb1fc23
- SSDEEP
  
  768:U+EYvByq6TsTZ4AgEFCJZOJFjWo64U5qsr:bEYvByq6TsTpCyarP5q
Score

1^/10
behavioral21 behavioral22
- Target
  
  IDA Pro/plugins/uunp64.dll
- Size
  
  34KB
- MD5
  
  7c80f0029b9c03ef657f9591fed9de07
- SHA1
  
  59696c0679b54b89d427e41ebaa209e62b14cc54
- SHA256
  
  1b94b512a5de90e1453e37a7d008f9de3667410fd0910df8e458ee57f47c1aed
- SHA512
  
  a4b5a061784dc0e8a06cff78943a49e3aba622928f11d155e00f0e1219234b351a8cd3fb5dfbf08c99d28645c7ef174fa14393bb5e0bbfe628342f4f07f1f536
- SSDEEP
  
  384:hvYV61njtuK41SrPqXLjMrLB5nSCy6TXCS4rs1EDfaG1Lh5XRVFRdJnZOJWnfX28:hc6p5LvYseJ95LFJZOJWnfXhVpxSE
Score

1^/10
behavioral23 behavioral24
- Target
  
  IDA Pro/plugins/win32_stub.dll
- Size
  
  137KB
- MD5
  
  a03bffa8388a1174261090e0dc4447c2
- SHA1
  
  aaafda47f7462bdb2b6a292f24f1a9eca12c6f15
- SHA256
  
  74919311461b7a6893c736fb350b37e2090a58da1cfab93b112278989c36beca
- SHA512
  
  f84022b762eaf2f9b0f01e8d5bc42cf1a91818b2633ab4307055579aaad5b67e0e183070d5a6519021a174db9fe5627d2a736c30d48a6ea17b4f460b1174fc4b
- SSDEEP
  
  3072:CwdNoEiyfwETB1OGyGct6hCBt3oRCRyjq3:iEiKTm8CBt3WCyW3
Score

1^/10
behavioral25 behavioral26
- Target
  
  IDA Pro/procs/arc64.dll
- Size
  
  132KB
- MD5
  
  eb92611aeddf18d5ce80c6cff0bb60df
- SHA1
  
  f6b8cc51c42936edb85a636036261baa34eba9c9
- SHA256
  
  229ed346e810382a886e6809627f784d9c17ab568679e4762c750da5d1be7287
- SHA512
  
  18dc53c5bd926d68d9e9b638fd6aac79fa914754835b6cb0f96f7273478d0cde1652bdc18771c979b2631de5fb56801940b8485fc9e6057a017d8c5e753d60d6
- SSDEEP
  
  1536:FNWFccFeOGHDVDqTmzIFxA8x9xtP3Gis3OP74cIvjdwy5bJW4Rq5:FNIeOSDtx8xPyOP7CxwS3e
Score

1^/10
behavioral27 behavioral28
- Target
  
  IDA Pro/procs/arm.dll
- Size
  
  375KB
- MD5
  
  a74200206ebdc175019c0c342e5df73f
- SHA1
  
  7471d4d82f92ab1d434d4995bf6ab227a60158a1
- SHA256
  
  1e9ede62649d004f7c752d91cccddb354b59094b1febea7241699df9e2bd25dc
- SHA512
  
  98f7cd9ae43570d05bdd7c019c433491a08cafca8707edd532923532eb47bff4236af1cdaee4667476a0a2fdada686607cc4ba7025acdcade8bc96d7f93fb875
- SSDEEP
  
  6144:RPKRURMmLm863klSplX8lThS4GO+pGHSw2PFYl4+USUR2/o+kd9auhN+Y86XnRFf:RPKyyv3cSplX8DpP+pGHSw2PSRUso+qp
Score

1^/10
behavioral29 behavioral30
- Target
  
  IDA Pro/procs/arm64.dll
- Size
  
  396KB
- MD5
  
  7f6b0f953426cbbc72db15d58683406d
- SHA1
  
  dd7f29f737bbe3a6208897cb7bff9b00481bfdcc
- SHA256
  
  084a31094b25ca57389f5673f83d0877c0c1bcc506a6a3682369970d13807ebd
- SHA512
  
  b3a2db243756e524100fdf2f05076fd8faa1c15c34733668f1c4a0522d15d177c26e052ed9943c4702991dade0cf0eea5681e91529a025c2807a0e91a2dca671
- SSDEEP
  
  12288:/yVq+xHUZWmWL9/nfLDcLF9EKoZopDqP:/ybSWnLVHcL3XgW
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32