industroyer | 6287c1d00f8e1777bd47c273c7dea2438321a5147aa0b9d722a8671718701cc0 | Triage

Sharing

General

Target

IDA Pro 8.3.230608 (Windows) (x86,x64).7z
Size

318.7MB
Sample

241107-xhfhlaxcpl
MD5

211af170bc614586b519f84016371947
SHA1

360c884543126771156d1350d1cc49fb10d2ef34
SHA256

6287c1d00f8e1777bd47c273c7dea2438321a5147aa0b9d722a8671718701cc0
SHA512

1145cbb8be6979a083d28593c99dd43d48a1506e576304a2eb19dd4f0cdf86e442cc97b5560d46f22cfbf707e713b2fd097830fab117258554f19ee2add5e821
SSDEEP

6291456:nrGwUH5LKNEc1OcBQHItZlEA63n4kPqJOrjkXkAJHnT8EepsclNjd/b:n/UH5LKivSQQEAaHqJOrIJxngEe+i

Score

10^/10

industroyer discovery execution

Malware Config

Targets

- Target
  
  IDA/python/examples/idbhooks/log_idb_events.py
- Size
  
  9KB
- MD5
  
  94c2d5cab95a0ff531181c21137b9ec0
- SHA1
  
  70851230d627984cd5b9127c431e47588076b972
- SHA256
  
  2fe102a7f27716099626c6a7aae885b03a5d51b32c2cf9552946c769b78ce711
- SHA512
  
  f9e3991cf59de1c60914707914be3f1a1a7ccfcf12fb98cfa748e4414ef5f501c46f4209a05255ce00c5d3a47df2b5ef349c5c0c7f687ae0a6b73048505bd6b0
- SSDEEP
  
  96:t3//2BRW6v8fw6kDLFIG8hTzSKkkO5XVPKV24M4g:l/uz6k/FESCiN
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  IDA/python/examples/idbhooks/operand_changed.py
- Size
  
  2KB
- MD5
  
  c884ce788fa124733ae78c90e1a0b007
- SHA1
  
  45b13f14eaa51fe737893eb286b758ecfb604864
- SHA256
  
  c5e1a542b28f3ba75a1717c614d064582163d63e98a11a8ff3b58a2df1763748
- SHA512
  
  4f8f56069d29c3f4d7edc052fc5712813182732f1267f62f64d3db36a7f52fdf9365a612e78038fa092bd338f047d7f79a2f5889786187618ffd3ca95f7e72b7
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  IDA/python/examples/idbhooks/replay_prototypes_changes.py
- Size
  
  3KB
- MD5
  
  68ba4d591c9717edf4bb338c7e6d909f
- SHA1
  
  e2ed1ba07ccdac5aff64e058fcac995536157a3c
- SHA256
  
  aadb6392038c4642f8e9a2ce60f46a90e11f1523289665d7c410cb73209fe7c3
- SHA512
  
  88513a54a96fab7da6bbb12a29cf994f4c96515b3f7e9b0bafc0a89fe7fb701315fa723a25e3a4174b825600a1ee1f618a30ad523cb1b640ddc275d24972f6bf
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  IDA/python/examples/idphooks/ana_emu_out.py
- Size
  
  1KB
- MD5
  
  59e835209be6b9856f8c7e0ee2186699
- SHA1
  
  f042b3a35f26b2d8149caa8f060e7b3aa65c8fe9
- SHA256
  
  492fcd8caef9a76911a20b3f6ba203ef26c5abbb0d4f19be719e4326b6dd6dbb
- SHA512
  
  34ddadb5d0d453e1856f747631708dd0be6cf6c06963e5dcd1c871a24d0a8cbefcb4c549ed91af3fe1c1c559960be39a77802e6a78ce89929b9432482d13bbff
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  IDA/python/examples/idphooks/assemble.py
- Size
  
  1KB
- MD5
  
  d896c738cdc36824adf3279fbb99eb5c
- SHA1
  
  6af44513a57b075b7dfd57ad6d2fc0e309a229b2
- SHA256
  
  e1cb1d3245e3e299d8a208c80b4c5fc8fac233fe6bcc89ff2d0939e6a94ca793
- SHA512
  
  7502ac92292cb0e6e54c4cc1e10b0fbab5efea1a8082075f4302b976430fe4201a88e982490814b19354e20d71da29b3ad12780bbd00ecf6afff0c818ce61f86
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  IDA/python/examples/index.html
- Size
  
  159KB
- MD5
  
  c30c584594916182cfd7eb26925da3ca
- SHA1
  
  5b97194343675c962a7eba66d49477957cd23cb8
- SHA256
  
  e88c776c38e99da859ec6ddbcf79b283f4312904dd40f985ea0f51566a63e4ce
- SHA512
  
  7d50593c0d419ef2f7a8ece4efd4be228e4e1289356ec7d34f10358de574de62f8502854a8ffdc9f8aacb9464760eaa4b2e0205c5a92d62f68456ce6459f096d
- SSDEEP
  
  1536:a36Xn+gE5eEQIn9qUj8TWVHCixcEMiSMF/Z8Z:a3SKCix3LSMFx8Z
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  IDA/python/examples/index.js
- Size
  
  2KB
- MD5
  
  9cdcf25dec86f261be86e6e6c88b1055
- SHA1
  
  25f21f206ebac940dd42b518eb57bd3cd037e2ba
- SHA256
  
  a6836fbf272b6704d254f27623756e63b8f8737e28b9260455a8971eeece8f8a
- SHA512
  
  07bb0f7bd1b654b1f53b914a557ae4229372c61fbb634e3385c3a5a8c2afd9d125dec991cddfcde974f31efcabc3d3c5f841ff58b5ea67829c95daf0d855e06e
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  IDA/python/examples/pyqt/inject_command.py
- Size
  
  3KB
- MD5
  
  12f9488644d82ca166cd612f0a3455a4
- SHA1
  
  b1020fef66da7719e3e5038203debf573471ba30
- SHA256
  
  8bc16c235cd5c713105bdbbddcb71b4d1805648b130a81026d78a4c3fc2709e2
- SHA512
  
  c2fd3fd9fed5ec57873c2d20700435f2500ae3bc5fa65a69532621e874c91c13ae397705fac35437c2462802f5c84e85d97784cad65a9155dcb11f0c629d1411
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  IDA/python/examples/pyqt/paint_over_graph.py
- Size
  
  5KB
- MD5
  
  53aaba9145878eac2a33b42da64ac193
- SHA1
  
  e0845fc0a2029d93cfd6512845a936bdd204479d
- SHA256
  
  9a33494a043958113911989ecf613746ec7076c0ccaf923566e218bcff690517
- SHA512
  
  f8eb7b7c576ee42baa568ea0204a3e3b845d650792bbe7512d63e1334634d70651bdf1ba103210f435852b0bc2beb6fd4813153c8e848021e1515a101ad6cad7
- SSDEEP
  
  96:tRig3nuTtPMocEWocM56N/+FgeHuKyER+/gMBCEcan:niguTteEWocb/vW8/gaCEcs
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  IDA/python/examples/pyqt/paint_over_navbar.py
- Size
  
  2KB
- MD5
  
  e2a7f32cc5673ea08ad321cee4ef97c3
- SHA1
  
  0606157c6feba4459078b96a007536c4e05b34eb
- SHA256
  
  1bea14310900ef27a9241d12f028bb29c80565e7c2af985184a34fc7cee9b31d
- SHA512
  
  8b01b1abb1a09efdbd9370aafe28524c3ee9f48431dc528fc618607cc745359b266b9108e85a10d1084885b2c8ed3aba7cb0b032027517edcf894d14451b6230
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  IDA/python/examples/pyqt/populate_pluginform_with_pyqt_widgets.py
- Size
  
  1KB
- MD5
  
  03c1feb9737a258c03e11b01095e3b53
- SHA1
  
  750da3e6df0d6a77142d86d7e3fc14889cd5e0bb
- SHA256
  
  2f64ae09065da185ebdafdf7c8b4cc412371edaba32eedf64b312032cf0a93ec
- SHA512
  
  f1e9fc2b0fe6f44a9c14ad7b168e07eb6811f390c3f4dc3f8bf4c95222c6cafbcf31b773f365a1b4a69581a8b40a757fd78471554c7dfbb2c031ae9bb1d2ae7a
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  IDA/python/examples/uihooks/func_chooser_coloring.py
- Size
  
  972B
- MD5
  
  d1fe8226931e2900815b99f1d766ff92
- SHA1
  
  70666db0f15349e7358411b5a1377486457209b3
- SHA256
  
  10c6b04d8c9ef86fefb8ba1a53a4b5ac49aa822b93e84c31be1661b0067ad737
- SHA512
  
  1043d3908ab7f8a1064c69dc6f5a2a6a1e21e04d0aa351e700b47c72209a4b6d7016217af4913830aa9011bf33ede4cabdca06199d59d3fd0d9e5d78b1cc88a2
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  IDA/python/examples/uihooks/lines_rendering.py
- Size
  
  4KB
- MD5
  
  eb9baf197b1086daa5b36909d9db6f4d
- SHA1
  
  22527207dcdffa6b50a3ae8b10aed333964676b7
- SHA256
  
  a93f09fb2e904e3ae630cad4faaebfc234da35ed350a613989851654e39ad9b5
- SHA512
  
  30c230a19d82a9e3129593a6a6f18ea86ebc145c790fc1506579412b02157720d062f0368812e5209da93fa3ed736c751977eaa2c73e789ab83adf35e6195809
- SSDEEP
  
  48:tbNMI4PW8cLZdT2w5KCyveavQllWvmHUEMR29CQKHaw9wck:tbNM5WB1X1l5fHw9fk
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  IDA/python/examples/uihooks/log_misc_events.py
- Size
  
  5KB
- MD5
  
  2646b3cd1ce13ee3e38f96aacc418484
- SHA1
  
  1400e525ef49e4e00fead69631ce5ac64df91153
- SHA256
  
  90b9ea197b9b2d86f0b8b3deee901948e8b7b88e0a105f36eab67f6f1e52aec7
- SHA512
  
  60f1c566efee6580e92796cccb26cf7a00164f1728de62c58afb49e200529d5c396b029c020351aaa470669f092a18ff4d0dbdd40a825a28ad294dbd66900541
- SSDEEP
  
  48:t/uAcLZqN6wZJJ0t0zcd/yrRFQyp1zha8ES+m1le+V0aasomZJbhAbjWZholv:t/uN1qN6iJy0zcdsZX131BSv
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  IDA/python/examples/uihooks/prevent_jump.py
- Size
  
  644B
- MD5
  
  d16999d2f4d35f19aba002bad3454ad7
- SHA1
  
  7ca3eb4626be10fc5ecf420b2a010a73e6bb6f19
- SHA256
  
  9073da164d9d656c7ce425b59b6de38558894db796d06cb7feedf81f18f600ab
- SHA512
  
  60ffa3b897efe194ea84123222a1dee782114833d0cb147a7811a1ea6424f4712b23ea2bc0a8f133319ba92bb371cd811b92d46268fef581948d7cc5a914e2bd
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  IDA/python/examples/widgets/forms/askusingform.py
- Size
  
  11KB
- MD5
  
  f2fe447bd0b0a0a9bdfbb3cef9762696
- SHA1
  
  12c74d3ef992d4b930710e161306de54d13e8285
- SHA256
  
  11a58ad7c1be743cb876b7b89f0e332323523c1ef3faaa709a9a711d3870f37f
- SHA512
  
  c55d1573ba2c3a696f1d9887614bed88dc35aaa3feb01deb3fecc6e75bb210b695f2ee3bbed032f9c35486d4edd45ea41ef9bd7e52a6819d01bbbbac310e2d50
- SSDEEP
  
  192:Le0XtpIxp/7TU7zxrEp/l/T/q/l/t/fR/HVVmEOGBn538eUK7aVKK:L1Xtk/0zxrFR/HuJGBn538erlK
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32