Overview

overview

10

Static

static

10

IDA-Pro-7.7-main.zip

windows7-x64

1

IDA-Pro-7.7-main.zip

windows10-2004-x64

1

IDA-Pro-7....ida.js

windows7-x64

1

IDA-Pro-7....ida.js

windows10-2004-x64

1

IDA-Pro-7....le.dll

windows7-x64

1

IDA-Pro-7....le.dll

windows10-2004-x64

1

IDA-Pro-7....ng.dll

windows7-x64

1

IDA-Pro-7....ng.dll

windows10-2004-x64

IDA-Pro-7....rf.dll

windows7-x64

1

IDA-Pro-7....rf.dll

windows10-2004-x64

1

IDA-Pro-7....t3_x64

ubuntu-20.04-amd64

1

IDA-Pro-7....t3_x86

ubuntu-20.04-amd64

IDA-Pro-7...._armv7

debian-12-armhf

IDA-Pro-7...._armv8

ubuntu-18.04-amd64

IDA-Pro-7...._armv8

debian-9-armhf

IDA-Pro-7...._armv8

debian-9-mips

IDA-Pro-7...._armv8

debian-9-mipsel

IDA-Pro-7....owerpc

ubuntu-18.04-amd64

IDA-Pro-7....owerpc

debian-9-armhf

IDA-Pro-7....owerpc

debian-9-mips

IDA-Pro-7....owerpc

debian-9-mipsel

IDA-Pro-7....ey_x64

ubuntu-20.04-amd64

1

IDA-Pro-7....in.exe

windows7-x64

1

IDA-Pro-7....in.exe

windows10-2004-x64

1

IDA-Pro-7....ey_x86

ubuntu-20.04-amd64

IDA-Pro-7....86_cpp

ubuntu-20.04-amd64

IDA-Pro-7....le1.py

ubuntu-18.04-amd64

1

IDA-Pro-7....le1.py

debian-9-armhf

1

IDA-Pro-7....le1.py

debian-9-mips

1

IDA-Pro-7....le1.py

debian-9-mipsel

1

IDA-Pro-7....le2.py

ubuntu-18.04-amd64

1

IDA-Pro-7....le2.py

debian-9-armhf

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    IDA-Pro-7.7-main.zip

  • Size

    508.4MB

  • Sample

    240322-t7z2raga9y

  • MD5

    b14cb079991d90077424f1dda62ae56d

  • SHA1

    bcba6ec13dbc0418954e88437dd21cead65a94ab

  • SHA256

    a815471df3a9d9700c63fecc246ae7f024288dbf7231937fb53a860064265479

  • SHA512

    5d1431b6b57c74f469aadd263ec1fb080becdfd7fcfce1a3d7de4c29fee29b3d5ead34ea68ed3eb450722453b704718b3ecada8d74856e80393d59b18fc699f3

  • SSDEEP

    12582912:wWgy8UmlgcTZxPU0kk81ePsQOC+a14q3vlFRzuBiOd2XrAzXxg/t:wWgPucTrU/kfsQZ+P4tL0iOA7Az8

Score
10/10
industroyerevasionlinklinuxpdfupx

Malware Config

Targets

    • Target

      IDA-Pro-7.7-main.zip

    • Size

      508.4MB

    • MD5

      b14cb079991d90077424f1dda62ae56d

    • SHA1

      bcba6ec13dbc0418954e88437dd21cead65a94ab

    • SHA256

      a815471df3a9d9700c63fecc246ae7f024288dbf7231937fb53a860064265479

    • SHA512

      5d1431b6b57c74f469aadd263ec1fb080becdfd7fcfce1a3d7de4c29fee29b3d5ead34ea68ed3eb450722453b704718b3ecada8d74856e80393d59b18fc699f3

    • SSDEEP

      12582912:wWgy8UmlgcTZxPU0kk81ePsQOC+a14q3vlFRzuBiOd2XrAzXxg/t:wWgPucTrU/kfsQZ+P4tL0iOA7Az8

    Score
    1/10
    behavioral1behavioral2

    • Target

      IDA-Pro-7.7-main/idc/ida.idc

    • Size

      2KB

    • MD5

      203a62f7a68076dc88aecb1d6350ff6b

    • SHA1

      6ecaa4c371423357f32c6f1f769580555ddb6919

    • SHA256

      f6f1d46fb35934802d700f693b83b7852c3f68c0a01c025e3154bd245e36d421

    • SHA512

      d2486f3d845a613e095a467b4901bb6f063b36b9dfe8388f66c16caab9afc8e43ccc28c922927365cb2d11735091aca1af1beacac1a9bca56b0851fe725fa166

    Score
    1/10
    behavioral3behavioral4

    • Target

      IDA-Pro-7.7-main/libSwiftDemangle.dll

    • Size

      172KB

    • MD5

      81bcec92309ce4888bd9386c67e6c080

    • SHA1

      e0da099985a2c8453d1f14ee496a1614326fb318

    • SHA256

      4e74f93024f151b0afc39783e4959a6bf604923ab4bda110b3432935f45c0c94

    • SHA512

      788ea308ba28c3b680f98f0dbd1dbf51bf5d0a916d7284f560a0fabce03cc22670c09278d5a131e24805988641a7ed00b0e05f1cd60a38eca0c50fcbd7d5a2f6

    • SSDEEP

      1536:Mr1GHHX5FNjP7YMasZBjDE6/veP2FcI1rWqX03i6cx7GrCjfut6AQ2ZcKuu6KAkz:YGHHdkMH+uGupsV3nc51jiNShl6KjY

    Score
    1/10
    behavioral5behavioral6

    • Target

      IDA-Pro-7.7-main/libclang.dll

    • Size

      20.1MB

    • MD5

      7c6ba9c768dc446dec1ecb3b91d70ae0

    • SHA1

      e0841cd931ec39bc7148626e6bba5cb0903040a9

    • SHA256

      a75780ed8ebc4e16d3e785590ba2f1ff10e837597a8e6e876f7f8e42658261fc

    • SHA512

      889e11a55176a929138fe35efec0467b3785b269d0d3738fca8709fbfc6ea60fd84b1bd0ec4acd198fe95db38d64501d26a90cd1ea362d65f8de21df7b38a206

    • SSDEEP

      393216:B+YZsFnX5hmFxNHIGBnEVlMcd2DG2NvWMQybDnKXPAms:pK42ycd2DG2NvWMQybDnKXPA

    Score
    1/10
    behavioral7behavioral8

    • Target

      IDA-Pro-7.7-main/libdwarf.dll

    • Size

      311KB

    • MD5

      dc24b46dde70a0e2ab63bca3afe242cc

    • SHA1

      3683bdfb74ad355265b91d349228ddc79ec6c7ed

    • SHA256

      fab0a676f16d30416c83dff111ef715f3b9d8fae3dc45b875e5527b343ddad94

    • SHA512

      fdd39dd7fde717336fb1942d747fdc19ab0cbae8b6c9da1404d93d7ed615b323d2320199e2020adf3ff00ae973d48c9a72caf99a55a5941d07469f28a6acd08f

    • SSDEEP

      6144:yPcY1VZEtn4Z2UQTrHVpSuLvXTFgfMw9OdB4vQNnh:yRVZTZWTbvfLPRgkSOMvOh

    Score
    1/10
    behavioral10behavioral9

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/examples/signal_int3_x64

    • Size

      8KB

    • MD5

      4eae047fa638a68c3a95db13e53dd193

    • SHA1

      035b92dd34b0cf4236fe55a74e68d95308740075

    • SHA256

      9404d2dca74ab4d931e2e9067a7c14e56067bb090370e6f9b764facb54e939dd

    • SHA512

      0bde17f86987ed8e4ffefe3166393194f77c26137061e28f6fcdf3a758430f20104cc8284d10a1778a604ecd20219d2815ee66550f1561509200c11de5e4458e

    • SSDEEP

      96:RAT5WB+BWQ25hsoeDXcsd9MRe4XhTDYw7liRhiB2EBqSiVwn:RAVWwYzhbwcu9PsE25sSi

    Score
    1/10
    behavioral11

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/examples/signal_int3_x86

    • Size

      7KB

    • MD5

      d9f3b5312eab34d8ab21d8673b41ac00

    • SHA1

      fdf8c1d089b0f947cd33c6c2b82ae3e543181bd9

    • SHA256

      1512e3d0d4a0041a64b1da7463185b707ac40229c7d786e311b56d177efdca51

    • SHA512

      b37021b165631e5da2a5ae0adc9e3ecbc5b8378e2c03dbbc5f91085b4d498d08c37f26b650579a443f8384f564b3d605cc835198eb75bf285937167d15420463

    • SSDEEP

      96:sin+JB+BkrXbPc141EJTbHENoYTw7liRhiBvEeBe7VfespB:kwerXo142bHKoPk2DE7

    Score
    1/10
    behavioral12

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_armv7

    • Size

      17KB

    • MD5

      32c6d673daee31d56702cd684286340d

    • SHA1

      9eda858cc505c1a6071f8649ceefb72d60411821

    • SHA256

      e11dca45de97ef53291bfd72c6f2b0b55e9dc1f9e0aebf6d1925f31a4d4c97d2

    • SHA512

      8d880ce57ea62ee716cf5c37545ebc68eb91052f812056609a36e6ccbc6bf12627a220fa8ec86bbbbcf1edb54287e41324c9213c819b831aef70eb7ca7772e46

    • SSDEEP

      192:Iuh74CcRMzwDT607TdjQfvpl4A6ZGOpC10CwpODWUrNxUe49cNlOAIM:Hh7qb/dsvEZGOK0Ch4E

    Score
    1/10
    behavioral13

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_armv8

    • Size

      18KB

    • MD5

      4b3992a30c9e508a5fd61a4d9e7c4135

    • SHA1

      a7f8289882947b89c3104f67d35281f43d821328

    • SHA256

      88f3f3e5d24e11e25a610e2752ac69bbc6c66956c10cd6631bd75e67036ccb56

    • SHA512

      516d4447aa6b27ef2afa30879c9cbf5554ae121af41ca5d048147e3c848ee8d6976e96ccde5d2c2163e29474c022fa40088ef9375b09ee18abb1a6de72bef98f

    • SSDEEP

      384:qyEPPQenZlqXic96XCz2Y3d3KuLcOGSTB:pE3hlqXb0E2Y3d3KuLJGS

    Score
    1/10
    behavioral14behavioral15behavioral16behavioral17

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_powerpc

    • Size

      67KB

    • MD5

      6f1244958f384f0ea904f65bc15f1782

    • SHA1

      c22c84ee181b066dabb61ca3d98440c3633e287a

    • SHA256

      ae10ffeb78b9f0d224c989ccacbbba224c97022c21f65fb32f19553c1aef9e99

    • SHA512

      d63478d06021b45f002f772d12aca5a1b42520722af81104ee3182c16d182c709d38930818d729c07b30fe792645c35c910c5a85d448b19b5d215e63d7d4fe86

    • SSDEEP

      192:n+FSL4CT1NB5SufnSJeHvQ1r2nl/IcmnNmaHg0o2jpGSe0GyC1rv4y2csfle88cY:nISLPB3r6JKm60oC4NcyF8k

    Score
    10/10

    • Industroyer

      Contains code associated with parsing industroyer's configuration file.

    behavioral18behavioral19behavioral20behavioral21

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_x64

    • Size

      21KB

    • MD5

      3b76e0d0804bd619c3948783a0c898f9

    • SHA1

      c103fa95269527fcf509988c0560a44916d42ad9

    • SHA256

      8b70ffd5148ddfb48d0a10839c6b0fc2ff449a3e769fbb49e918aee51ac5e097

    • SHA512

      9de7faf689361de1d1c0416f19ccdc094c198f2aa44cd79fb488a62960856af96d14d8bb4367fd262803f80914a8d647e59fe68ff6a923b22ad47de86475728a

    • SSDEEP

      192:Ri6WVwNdVg+uX53qByGtdQY57Y+JYzUuqjeQtpy1TEGU1Z1ZpksMxlg9x/6KmiAb:3b8wByWGY57Y+MNqpy6l7ZmsC+xi2A

    Score
    1/10
    behavioral22

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_x64_win.exe

    • Size

      17KB

    • MD5

      4bdfed1717ee48aa4bbe091d6ce668f3

    • SHA1

      ae65d58d4882bb55bf7edb94436c8b55dc0da195

    • SHA256

      687a36f98a8b62fc0411e0e9e8d09c42608f201a7fe68d2e3ea4272b98fe0a70

    • SHA512

      1619e72c26aa3b879d548f81b4e46136a563f351093f355db9aaa8bf25c4174e00433d4fa47821e274c74c42d23f130dca73514efedf277d89da2a370ddd9607

    • SSDEEP

      384:DmNvfkyWjLtuNYpXRtI5fu2LRr75R7eBslTJ8:qvr8dTOu2dPPmsH

    Score
    1/10
    behavioral23behavioral24

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_x86

    • Size

      15KB

    • MD5

      3834b53b0b4bf9266f7b008b9f131fd5

    • SHA1

      c89436fe3dd8af727a3b263743f24b3518f1451d

    • SHA256

      1c4460293f490faa462db47741a1bd73a56270b1dd85e337c98f86a3f63fae75

    • SHA512

      426149282ed8d29a1d5bfe43e3d3be6b591c9f75bb9c52462d0258b46b5deda56b8abc6d1bf93c407e66942d745d97f3b2bb4075d94087a70e7236faeda9c7ee

    • SSDEEP

      384:QrbUNB9dXXqCeYmEA7fhP8VPdiJXb2UZZ5d:QrbkHx6Ce13AUZZ

    Score
    1/10
    behavioral25

    • Target

      IDA-Pro-7.7-main/plugins/BinCAT/doc/get_key/get_key_x86_cpp

    • Size

      20KB

    • MD5

      abf0ae20da8419d031a322c57a375956

    • SHA1

      40a4ed77022f781fbe4d81db4e64082e0a96dc40

    • SHA256

      b9fcb8b279f002e4d1eb4ea9d88c63eb5554bd46a3d06dc004aebb0fab18ed3e

    • SHA512

      c198d7d367071b9cf3e1d97e1637ae29454a18e9166aff3f0753e634b8f74c91b4e6f4939ba65a525d82f1fd9a93706f3aa690dfc08e92a3a4b48e039f8f6084

    • SSDEEP

      384:0VSUhoWggmDm+AnXbM+7i4nBeIOLYnULdmVEIDV:DTWfImvBiIsO7p

    Score
    1/10
    behavioral26

    • Target

      IDA-Pro-7.7-main/plugins/diaphora/hooks/hooks_example1.py

    • Size

      2KB

    • MD5

      9b83d93da04fa453fd05170a1cec7633

    • SHA1

      6ccc175e155e7b0b6563490d84a6bbca73fbd9d7

    • SHA256

      1bff23a5a90dd15c0c87659c31c6e60db7d2ab096c81ef609d59145223ce02b0

    • SHA512

      56a5eb2989c5bd28b5655288d5a8b6741377e062ed134e214d3599ee995e99c48f5eac1580106cab16b7567fd6970dc1c5d87a308f07773d77ccc1df6ebb1597

    Score
    1/10
    behavioral27behavioral28behavioral29behavioral30

    • Target

      IDA-Pro-7.7-main/plugins/diaphora/hooks/hooks_example2.py

    • Size

      4KB

    • MD5

      40bc8159b7ac00dd7387a319844288ec

    • SHA1

      27d4f504f70e1d41e49754815705eb2e85c25ce4

    • SHA256

      038c15ea92e02d2029b74abcf2ef91bcb00f682143125835a4d8914a39f42ebd

    • SHA512

      22a649b865fed59e0a811f2fa659a3f6912885144b3c43a643a2bc53f31f8436a27a51b9245eb1d9c6d0cd1e3daaadca47723e20d90367951cfb7da37b2c1b90

    • SSDEEP

      96:qI3ZKM/N6AKp/+Vcy+GMyD/iucA4SUXluffe32lCnyZ8Bqk:13AMMz5gPrmVSco+3yyBqk

    Score
    7/10

    • Deletes itself

    behavioral31behavioral32

MITRE ATT&CK Matrix

Tasks

static1

pdfevasionupxlinkindustroyer
Score
10/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
10/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
7/10