General

  • Target

    FDEB96BC3D4AB32EF826E7E53F4FE1C72E580379

  • Size

    37KB

  • MD5

    7c05da2e4612fca213430b6c93e76b06

  • SHA1

    fdeb96bc3d4ab32ef826e7e53f4fe1c72e580379

  • SHA256

    d69665f56ddef7ad4e71971f06432e59f1510a7194386e5f0e8926aea7b88e00

  • SHA512

    053d1a0b5ebab8b4afc26af20d533947bbc1c6de24c3ab0735f9bffcda3e05a2aef18b3f136102bbd2b5637b5f02b27906e0a092067e29d7943cdfb449fe8f27

  • SSDEEP

    768:9kQ2SkG1EqihRWlG4ya6kcqCHfv3uWvzPMinhgaXj7:9jo9kc3einhgaXv

Score
10/10

Malware Config

Signatures

  • Industroyer IEC-104 Module 1 IoCs

    Contains strings related to Industroyer module used to communicate with power transmission grids over IEC-104 protocol.

  • Industroyer family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • FDEB96BC3D4AB32EF826E7E53F4FE1C72E580379
    .exe windows:5 windows x86 arch:x86

    2cf6ff919d8af9170b36d01b351744f3


    Headers

    Imports

    Sections