Overview

overview

10

Static

static

10

8.3/IDA_Pro_8.3.exe

windows7-x64

3

8.3/IDA_Pro_8.3.exe

windows10-2004-x64

7

8.3/ida.exe

windows7-x64

1

8.3/ida.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8.3.zip

  • Size

    457.6MB

  • Sample

    241228-a964astjfq

  • MD5

    942dc747efe17edaab3a51a20232031f

  • SHA1

    a81ed3895504f5e7bb4baabf6358668d338ad21e

  • SHA256

    3496f121e42411ff4d9376d1a2dac0b1806594a5f35b3ec8402413153757409f

  • SHA512

    29a471beac4eae5c6712fb36722a4cb619da95be328d70759839ba5705351878b26564673c7aa4a7db47851f87f06f36f42d91b60a9468c35c34ec28ae949492

  • SSDEEP

    12582912:cbslgVwFUj3rqyGnefuwwCOt2wyg179KqAmt3irisPW2T/P:chnGefuwwcn6jAM3YfPl

Score
10/10
industroyerevasionpdfupx

Malware Config

Targets

    • Target

      8.3/IDA_Pro_8.3.exe

    • Size

      622KB

    • MD5

      03f4334f9db7123733566cd8e53a06ca

    • SHA1

      42062e09dae39703d3085c88bee0b22ed12ad653

    • SHA256

      421dee20c98287f1e6483a9629ab388423a99cdc99e86d3757f220b167853be5

    • SHA512

      7fabfe9b26f0b292e8606a9cd110d2be2734b7295003581d54fa87a568e18b260d49802efc8305fe77549ce446e4bb5857eb5003ff0a01551b1836f306f5f3f3

    • SSDEEP

      12288:V/2tNzYBJUYdYlozwUhwazaL50DgkIAySn65NtBE:yYYizwU2PL50ByS6/tBE

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

    • Target

      8.3/ida.exe

    • Size

      4.0MB

    • MD5

      3cdc0264ed608032a128b0d378dc1735

    • SHA1

      4af272bbb78dea037b6f97a176afa5d0bff3b356

    • SHA256

      eb6349d53c8f8e4f1b649369d5435694141638fc088810e2e138b691b2db9dba

    • SHA512

      fb3b330965091ab1f11d29b5228bf9ce52269ce4a23c0e7937d2cb76ac40437e2da7ec539827e47f1ebda75b0ed0c17154987b0bee6a1cedf1b0e020581f4db0

    • SSDEEP

      49152:5YPnm/Zi34DKYj0ZkO4+XTcSq8EQtezdGfPko7FjOeBfDMmpwfFcnQOh6H6RBvV9:5wmOqjcXA0nexReBv6avGBXMi+7Wg

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks