Overview

overview

10

Static

static

10

IDA Pro 8....64).7z

windows7-x64

3

IDA Pro 8....64).7z

windows10-2004-x64

3

IDA/til/pp...dk.til

windows7-x64

3

IDA/til/pp...dk.til

windows10-2004-x64

3

IDA/til/sp...rc.til

windows7-x64

3

IDA/til/sp...rc.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

IDA/til/xn...86.til

windows7-x64

3

IDA/til/xn...86.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

IDA/til/xn...64.til

windows7-x64

3

IDA/til/xn...64.til

windows10-2004-x64

3

cracked/ida.key

windows7-x64

3

cracked/ida.key

windows10-2004-x64

3

cracked/idacfg.ini

windows7-x64

1

cracked/idacfg.ini

windows10-2004-x64

1

cracked/secur32.dll

windows7-x64

1

cracked/secur32.dll

windows10-2004-x64

1

cracked/sr...ll.sln

windows7-x64

3

cracked/sr...ll.sln

windows10-2004-x64

3

cracked/sr...ydll.c

windows7-x64

3

cracked/sr...ydll.c

windows10-2004-x64

3

cracked/sr...ydll.h

windows7-x64

3

cracked/sr...ydll.h

windows10-2004-x64

3

cracked/sr...dll.rc

windows7-x64

3

cracked/sr...dll.rc

windows10-2004-x64

3

cracked/sr...cxproj

windows7-x64

3

cracked/sr...cxproj

windows10-2004-x64

3

cracked/sr...ilters

windows7-x64

3

cracked/sr...ilters

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    IDA Pro 8.3.230608 (Windows) (x86,x64).7z

  • Size

    318.7MB

  • Sample

    240802-2be1psshlk

  • MD5

    211af170bc614586b519f84016371947

  • SHA1

    360c884543126771156d1350d1cc49fb10d2ef34

  • SHA256

    6287c1d00f8e1777bd47c273c7dea2438321a5147aa0b9d722a8671718701cc0

  • SHA512

    1145cbb8be6979a083d28593c99dd43d48a1506e576304a2eb19dd4f0cdf86e442cc97b5560d46f22cfbf707e713b2fd097830fab117258554f19ee2add5e821

  • SSDEEP

    6291456:nrGwUH5LKNEc1OcBQHItZlEA63n4kPqJOrjkXkAJHnT8EepsclNjd/b:n/UH5LKivSQQEAaHqJOrIJxngEe+i

Score
10/10
industroyerdiscovery

Malware Config

Targets

    • Target

      IDA Pro 8.3.230608 (Windows) (x86,x64).7z

    • Size

      318.7MB

    • MD5

      211af170bc614586b519f84016371947

    • SHA1

      360c884543126771156d1350d1cc49fb10d2ef34

    • SHA256

      6287c1d00f8e1777bd47c273c7dea2438321a5147aa0b9d722a8671718701cc0

    • SHA512

      1145cbb8be6979a083d28593c99dd43d48a1506e576304a2eb19dd4f0cdf86e442cc97b5560d46f22cfbf707e713b2fd097830fab117258554f19ee2add5e821

    • SSDEEP

      6291456:nrGwUH5LKNEc1OcBQHItZlEA63n4kPqJOrjkXkAJHnT8EepsclNjd/b:n/UH5LKivSQQEAaHqJOrIJxngEe+i

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      IDA/til/ppc/ppceldk.til

    • Size

      308KB

    • MD5

      cec93b530c5c18714494f12c3a3aa50b

    • SHA1

      1c895231beddd31a059fc267d81fbb886cbe32ba

    • SHA256

      f13750ff332d88d617936ec4477303a4d5c73d525ecbcdb0b86941546f7a1afb

    • SHA512

      4dcf325c0e840b705303195112e4f67cb65d124742986398ee31ad7051a8d0ce4a4aff04e05f9eedf4e8e17a0f458665f94c8ee6d65ff8330c88fdbb644c7b21

    • SSDEEP

      6144:QHgwxrvS0tkElbCLAyZYWzgjiahSXHousFqJsHB7WKKHHAaE+wUyKKy:QttahA4BaoXIusFncKORdyy

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      IDA/til/sparc/sparc.til

    • Size

      731KB

    • MD5

      9b0e0cc3f04204a0ed3d3335e11d1754

    • SHA1

      e26077ff9927b531697d79e2257b70b31df71da9

    • SHA256

      01a5d1052d60ece36d931d454f6a01c7dd27ada35f23f50c5d0eea6b8cd20cdb

    • SHA512

      37ba095be44728ac97528f647418bb6febdaee881718ee244579eb5dfdfcd1846c1303ef3ce924bcc0dd71df44e6f0b94f6343bff188ace7226267502433ce87

    • SSDEEP

      12288:cix60DqNfoXufddqrvxcjwU3AzyaUrkWPQXM98twR8vWRR3wq9NQk10wS:ci5sfoX2gnU3Az8j+MWtwWWRR3w4j1y

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      IDA/til/xnu_4903_x64.til

    • Size

      1.1MB

    • MD5

      56f73a3589cb48b0ca57ee01f078e371

    • SHA1

      ab363b65507d2f8936cb97d7ca52e8c1d249d569

    • SHA256

      8d29d7aa3093574a96aaa229d139d70f11b01c70f363780ec4b089d4aabf935c

    • SHA512

      17fe507217e11e197514cae76de065ddb81fce3d056ce215aa1da49c08d3569b000bdb480c706b17e3a7f50bf5fee793aac61983a5894148f4374fa59b682484

    • SSDEEP

      24576:jzUmS9QbOKgzFvzR3xQCMYUKdMxRuhDDFNHaM3CAtN:0N4gB7Q6MxchZyA3

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      IDA/til/xnu_4903_x86.til

    • Size

      1.1MB

    • MD5

      4232e00d580a370a6a4ba7f42ae8573c

    • SHA1

      cb822354411f33ea8fc8e51b4277ea1373b8afcb

    • SHA256

      6893daa6fe3506d04fd318b1b643270678f8b445233733275d606d8028eb92d5

    • SHA512

      e601f766a129d7d6588d2b9d77ee00c2e1a860c815664c6ab10dffbdb60a89d70aeb528f60b362705776e2535d11be4f26b4427dd48ba5e24ce5bf27e38a5a40

    • SSDEEP

      24576:2a9ybWRp3XwPoqxIMrBSFkrDQg2MrmryVaru6k04YjCc6:ngbWfXSoypNv24WyVmxjCc6

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      IDA/til/xnu_6153_x64.til

    • Size

      1.2MB

    • MD5

      9c86777db6846be6bff9d3ea3d848e32

    • SHA1

      5c1821de71247a306e88c34e1fe2256dc543c064

    • SHA256

      09403d6e4f61329bd5a6502331f84e447e0ec830ffd17ef0694d6e53b04eebeb

    • SHA512

      4498650ec3b76453921799f7d003cb02961ecbc3f34aa8a043d2512776ee0a938278126b3f1d9bbb396a14936283c74375147871617da15e394b40be9f7521e0

    • SSDEEP

      24576:6DaeNUaXuM3PSzgW8lhKMjVn6Dap6dBorhf3/mTrzUqs8jmE6FTRJ0cgxdU:caeNUaXj3DrVn6NdmhfvZlRapU

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      IDA/til/xnu_7195_x64.til

    • Size

      1.2MB

    • MD5

      04f2ac520050921ae4ed36c3af7b3be6

    • SHA1

      64bf3ffc7b99aedfdbb3778af78b601be9d6a410

    • SHA256

      0992e79b75cbd7a146e74c95bc59028ae450c7ab194ce3b0c9499078cdcaf13a

    • SHA512

      fef6fb057cd70a7c04270f031d8116f9ab0fa9d88f6d2251d8f4e630a37a0dec47d37c4d57a440674bfded2e0b8fecbb88acede53a0ddf2e62b1f25f583acaef

    • SSDEEP

      24576:7l17/puotApsvPoSqbuJ3JvbmC36UoPRmNoYlcQwumLpp:7TzpxUoogAq9i3D

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      cracked/ida.key

    • Size

      1KB

    • MD5

      f5be5f9576de53f731b3a9d786d6b6b3

    • SHA1

      cafda727e11b28431de1c62f5717ae2d3ea0ad3f

    • SHA256

      0ea1033791a5111a50dcdcfa7bbf1e6f5e476ab61c43909025ed2a25dcbd1b35

    • SHA512

      9fa287ddfe01119febbb7f04b5d844849c0aa58784f704789b03fbc5cadee7d0f89273dc9cf516e271bd1ecb4dba5698c6dd9f09e593ae9dfcebb70344c417ca

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      cracked/idacfg.ini

    • Size

      1KB

    • MD5

      0c2fa0524a19dd4f624461331d0840ad

    • SHA1

      88ed57a3bb18092543da4e5b68a0b18cb18632ca

    • SHA256

      af0b6489255ed81adf89d2ca2b5c6ced767d5023ab0dd32d97bf7e462d04e89e

    • SHA512

      0fbaea1566ed389b3b5b70bf988a85704b2656fc770f4b042a6a11bd1ec1c657c6a62fff13d1aa63ad9ba2edf0e89eacc544c239dcb4b5ca2fd8b14ef2f41192

    Score
    1/10
    behavioral17behavioral18

    • Target

      cracked/secur32.dll

    • Size

      30KB

    • MD5

      95db8555c8644d80506e6b44996cd4e5

    • SHA1

      08110eeb9e1af3080ac80dd98f0ea11ea0d91bd2

    • SHA256

      c0a620b2315fbd91c2f53aac5097bdaf06eb3f1a01b654103956154538d8bdc0

    • SHA512

      0bbb9a555fdbde272886753cec5b4598f9ceb9b1787f2b06adfa9add04a98ff84d0b8dc7dc50ebb085704d5338ae7562e8e3c14d6d5bbbe23ad2ac776eab5dd1

    • SSDEEP

      384:pwR1VHah09gBaX3iV67RjsuGcmDvUF6ZhBsgPvvafkpM4vMsuiCzFPCJnW2:41VngYX3iAFjs/DU+htvafaMnssBi5

    Score
    1/10
    behavioral19behavioral20

    • Target

      cracked/src/idaproxydll.sln

    • Size

      955B

    • MD5

      2189931e57833ba7bc92022c19ba2e2f

    • SHA1

      c1dccf82e51769cbee0bcac366d0e4763b6ae8d0

    • SHA256

      a04f0c13dd791b2ff213e505520756b76133536085800ed0c898eba6ff05b33a

    • SHA512

      ea514697a24aafabe5993406d6fefe90d7baf3df956303ea7902f2fa6ec6d5501aa60475812bdf675bb84e1ead7be08cd3621ce810e37d65379036fc78bb5dcc

    Score
    3/10
    discovery
    behavioral21behavioral22

    • Target

      cracked/src/idaproxydll/idaproxydll.c

    • Size

      29KB

    • MD5

      26747dadd709b2e1591332732a702bc9

    • SHA1

      2dad94c6631e7e41e0c85b5ea7d953f32fbee64e

    • SHA256

      4fcbffd82990ab6e8768e88cfae2ff0aae7d5229b01f031c7d812cdbe26c8637

    • SHA512

      ae2ee7e6d12cada9110659653191db851df08038a6565286e2160d0bb03c13fdb3c1324effd9334001d55904dafe1de6f495f7f749510efbf18f6ff624f74928

    • SSDEEP

      384:GeQhaMwF488ZFkawMe/jO7HXeoYVkv5LxnH3NF4nijTrsq4yjMRu2MZhr5:2+ZWYkhLB3lEFMZr

    Score
    3/10
    behavioral23behavioral24

    • Target

      cracked/src/idaproxydll/idaproxydll.h

    • Size

      7KB

    • MD5

      617abf3eab8cea2a1881fb1d68c17ece

    • SHA1

      ec8d4c9723865e20f4571ac01fec9a1baea76efa

    • SHA256

      914bd17b18f0a1d85874d3c37f9720508b07e346ad7ff44270c0c7a2d0b07d8d

    • SHA512

      01c09a2d6dacd9fa88465ad0014c7f8ad548c15af5dad622f4f48463324962c3b8149da69ce1fb65651872057da265c333f9418eae15d284f6597cfe5dc3f956

    • SSDEEP

      96:uHBToNobLCE0+MpEX0qpBt/AT/rBriVQmu7dR67FblNi6v/BgdgzISuWfHZpa5iU:ibLmEX0eBt/g7my67FbX+7l4xy

    Score
    3/10
    behavioral25behavioral26

    • Target

      cracked/src/idaproxydll/idaproxydll.rc

    • Size

      4KB

    • MD5

      a993a1c8a127928ce21db51268379b1a

    • SHA1

      f2f863f7c1736559415818918776f0a3198c915a

    • SHA256

      8d731cbb7a792e6e36881422619631002618b4f7aacf8457e1e19025b41c854c

    • SHA512

      bc669869bc52d6af6fef666698d0ed9319817de2a1ccd0b98e8b4eb6510d0142a253dcfed16075cc48cdf5604466b0edfb7a91051c0ffd134be970ec26a306bd

    • SSDEEP

      48:ogu6q1Bid6GpoY1unrK/CnwVn6/kVkwhCFFu:oP6+B7K57kw1

    Score
    3/10
    discovery
    behavioral27behavioral28

    • Target

      cracked/src/idaproxydll/idaproxydll.vcxproj

    • Size

      5KB

    • MD5

      56508cfea14c9e3962d06480b31d0262

    • SHA1

      e2cec4331cccca1cfeda79d0f98dc4fcde8f75c3

    • SHA256

      eb1f1a3757eb548cd75830e69580e901441c1706d946c14bbe1b889e8228a3c2

    • SHA512

      e8f9a01fb7bc6e6f9351027a54d93aced02296895a012b9ef09d4064cba6aa86b991d82a8a4efd4866df243f6b00055b9ca383236d1134a8b0ccd51ab4867093

    • SSDEEP

      96:tLpnfNDHWHTyaL2yaLDmrrACeXFovZF0YlN:NzXFmZF0K

    Score
    3/10
    discovery
    behavioral29behavioral30

    • Target

      cracked/src/idaproxydll/idaproxydll.vcxproj.filters

    • Size

      1KB

    • MD5

      82b8d45da3e832174bcb2fbceb00b4d6

    • SHA1

      4129dc9bd433ad9aaadfcfb963c3df9a9d8bbc08

    • SHA256

      2526ec49389e2e0c824d570608fde2dc623153bacf40d8d83fd1aad0c4da7e33

    • SHA512

      9452f5b7ddc960dce3020243ea21cc3200a56abcf5f4e16f351eb96bbb352f1d773b0e89f4f6c14a5ccadf728e24c18c0d2f7eca37c575f61a096f191a351309

    Score
    3/10
    discovery
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

industroyer
Score
10/10

behavioral1

discovery
Score
3/10

behavioral2

Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

Score
3/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

discovery
Score
3/10

behavioral22

Score
3/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
3/10

behavioral26

Score
3/10

behavioral27

discovery
Score
3/10

behavioral28

Score
3/10

behavioral29

discovery
Score
3/10

behavioral30

Score
3/10

behavioral31

discovery
Score
3/10

behavioral32

Score
3/10