industroyer | 59e4fac681f8e2e2db47821e1d1e1d76713363dadd006ee060d396b363c43e27

Sharing

Copy URL

Twitter E-mail

General

Target

ida pro windows 9.0.2.zip
Size

404.7MB
Sample

250104-rfqb5avmhj
MD5

f0a434c445c0b0876fc7d4c7215c9d46
SHA1

3c098ac813747e415978af614683e3ee657bb821
SHA256

59e4fac681f8e2e2db47821e1d1e1d76713363dadd006ee060d396b363c43e27
SHA512

fb5504d64d1c234da66a223e5afcfe590c8114d48394e85b22d5f09a541a653abdbb42266f5dac05537b22d90d2e3e14fcaf3d3a7eed0a4230aaf1ecbd568cdb
SSDEEP

12582912:0KKcYzmSr+zftUPernzM1aIvaFRhtSCoICMqI5KP:0KJYQz+PEzVRhtw7MJ5KP

Score

10^/10

Malware Config

Targets

- Target
  
  windows/cfg/gdb_arch.cfg
- Size
  
  6KB
- MD5
  
  61d39cccf6d394c6878c59a0b7a0bfb6
- SHA1
  
  f2006e11d7c26c8fe9ab6f87e3ff467dd53362fa
- SHA256
  
  37dd482c92714f7c18b52d32ec63e5eff28e9576212eddce19012f41e85ce3ef
- SHA512
  
  1b7f57ba7c7451a54723970eb1be43b7b4b0ab3d72b29efc783718dc354d442104a1f20f400e7d16341319e8d8a4192b0f136a80cc6248e0ce5f179858706117
- SSDEEP
  
  48:6HByvXXfEJmorBXFr8Fr25LI+nltKrBFrvGFrIGFrL+Fr7FFrErf5cRwrFrwFrXQ:Q4gvI+PKH25cG1nVSBG
Score

1^/10
behavioral1 behavioral2
- Target
  
  windows/idc/ida.idc
- Size
  
  2KB
- MD5
  
  dbff77091ca7ead006b0e240a4c2b33a
- SHA1
  
  f00ca4ab9ab105bc065db0c849ecc6a9fbb87e8d
- SHA256
  
  1dc1dbbd3c03c81498f93d979b6c129caf2f02f5199d27db696a9bc984d61aa1
- SHA512
  
  c7ee235e07c8481fd0d5a3436af4a8b8f068a0f61fc02598f1910ab462492ddb10bb3acb36e1b05c1167a6e0f3bf07c6e1e145b393e6c80da178919b69e044b5
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  windows/libSwiftDemangle.dll
- Size
  
  413KB
- MD5
  
  80016ffb38757c4d5726434ba693035c
- SHA1
  
  6e14c75bda593796d89921a119fc11d6e3cf54ea
- SHA256
  
  0fc2ecd20793f573ca1d3e9d5080f54a856a4706b774231ed736169c3db919c3
- SHA512
  
  285af4ae374750304e4372e42fb930edcd8bd1da832aa88156317d27f1dc6fa76eaa8e7ae36c46739d41093f1ce90d523fda872402abebf43c0d76bea4abf4c2
- SSDEEP
  
  12288:QesiZjWzolGhMEGaw/jujDDOVfiWBBCS7JzrrOI7hGC3ak:QeBZjWzolGhMEGaw/jujDDcfiWBXJzrp
Score

1^/10
behavioral5 behavioral6
- Target
  
  windows/libclang.dll
- Size
  
  20.7MB
- MD5
  
  505615009a5c0188ec60db9bc5b55906
- SHA1
  
  315b15a18d37793ffbc48cc8f51e7106c5ed3978
- SHA256
  
  7309a255d501872dfc5a991ebc13e40cda839a3c512837198ef5e1069124ed96
- SHA512
  
  460f592fa8d84292b1907a3a0a1d55811774bd073ed9546e4764aedb1f25aa54fe2edb2bcb18832742df994652566836b2fca932e294fa202b18f2d5d204cc46
- SSDEEP
  
  196608:asBTB4mFLkXpAWBqOKkaS+5FCzy/IAWwsN6hmNbNH4XEYQwq4L7uO:asn4gLkPBqOKkaS+5ExAWWhmNbGUivu
Score

1^/10
behavioral7 behavioral8
- Target
  
  windows/libdwarf.dll
- Size
  
  276KB
- MD5
  
  c52f1c57c12424bf36b9a5922653d92f
- SHA1
  
  90b6ff23cf50ea271d0e26deb8f32fae0684d00d
- SHA256
  
  50df0a2c54670fc0a803035cb4a2b25d422e58cc725ff7aecc4683459df7a696
- SHA512
  
  0c7295301d8c155afd23a3d137c62664ceb75e10bb4e2952784f22b02f7cdc79150d8201566d4995b0b4c3eb341a9ff321285011cef703d52877acbac0493013
- SSDEEP
  
  6144:zPIo8cfbsfeMQ9y+t/qcGMbg2QrYCkS+Nhnxk:Eo8c5MEF8nYCE
Score

1^/10
behavioral10 behavioral9
- Target
  
  windows/librustdemangle.dll
- Size
  
  29KB
- MD5
  
  e6e6b3d07b8300d6efe038ab38b6ecca
- SHA1
  
  37f23395df0a6f6d8297f1ef3b7ba9834ca60f69
- SHA256
  
  610d6753bf996c982b2bc1c7dfcea40fe7d90645caf504f7132232caa63a01ca
- SHA512
  
  e1dc184e82d59e9338d0a9a3d816f27900d9369e52a80526ddc02fbf2d8b6efcab329c1ecb38dc3ee964a682e51f3dbc9aac4f556464dd98f1abff66f426ecc9
- SSDEEP
  
  768:6vVavHCuKmRFiT9mkUiznwOOlBWsGGaw:6tavC7mRFiT4RMnwOOlBWsDaw
Score

1^/10
behavioral11 behavioral12
- Target
  
  windows/libz3.dll
- Size
  
  15.2MB
- MD5
  
  4c585ef161d96cb5b984ce5ee0adc93a
- SHA1
  
  2c44362977e94effe02348c05ea9e00d4baba67d
- SHA256
  
  c9ba88d9117f7b3c303336ba795a81c9c409ab3089976881bc4d2e09b6e6c8a7
- SHA512
  
  1882adaad12aedaad7ac83054072d48f58ab40be1c753149951801baa5f259b907caf7e3e134b681a756296676b4d2ba4d800ef6d81f59e636e3d958456a4474
- SSDEEP
  
  393216:OII/gT+Oj1t4sHKSceOhDgzvuRjT0fDQT6bs45rf:c8HKu4457
Score

1^/10
behavioral13 behavioral14
- Target
  
  windows/loaders/aif.dll
- Size
  
  17KB
- MD5
  
  0f8fb97a1a092768ecbfc29a368a3422
- SHA1
  
  2ecd06c9111670470b2c2db93df29ff950fd71dc
- SHA256
  
  b2cb63888a493b954558c7aa9d00b100c0b1dc4e9757ad9ee728c6226dc7a7fe
- SHA512
  
  da318ee8026bb66257524e5a5ffdff53b4db15b19f4ad6e6dc086d76850f6b3d140cb88d44a8016305ab26f8017d1d74479cddee5512859e79d936ce388ab0f4
- SSDEEP
  
  384:dPecdMSWUj/+UiMOl3NjaeDJ1Gn8HU0dTFfAHZ/BA:dPecmfUeL1NuLn8HU0NKB
Score

1^/10
behavioral15 behavioral16
- Target
  
  windows/loaders/amiga.dll
- Size
  
  19KB
- MD5
  
  c7dd018a74aa7ada8e6a6d35dbdcb67c
- SHA1
  
  1c9d00bf0a9e90dd3af06f3f4d8d2815e4d6d2a2
- SHA256
  
  4eca7b74f866f8b9419e4416fa8745cb099a1ed8ee16a2f56b5e664ec17cfea3
- SHA512
  
  faf049e0e12a3991a06af5046dadca06be1fedc69250a08b6028b4f78618569a7b37b22367b39bad7b4fea82b70c10826db057d61e9d3944e66710d835517e15
- SSDEEP
  
  384:DNjUUgcY3UZyux0zqwpHLUnhqTG8cSgp3/Ff/2HD/Y:DNobTVrudf/8
Score

1^/10
behavioral17 behavioral18
- Target
  
  windows/loaders/aof.dll
- Size
  
  19KB
- MD5
  
  c87794933843b9c6fdd196afca47f2c8
- SHA1
  
  7483157dae905c9820f0e160bc527cdd92b6f9c6
- SHA256
  
  9bb76a8c9b56bcb01e2b2b5e5f3db1a7554e6c87d3f5ba5d7701bf6a945f6181
- SHA512
  
  72391ee64d91dd63877129f25c34089543a230dba4f6c5d90203648d14d299819dde7727dab15a553656f7cbf26eaea3b5c5c7d791040cddd668fd1a9871688c
- SSDEEP
  
  384:S94td79toypmEaRdBlrIV5eMrPCYjuPwHH0:SOboyR1VrqF
Score

1^/10
behavioral19 behavioral20
- Target
  
  windows/loaders/aout.dll
- Size
  
  19KB
- MD5
  
  281b9bf90a7894ddf3f0c8ce98723db9
- SHA1
  
  38216df58fb3d149d85cb3eb08ec6ec06e9e8d47
- SHA256
  
  c3e22e97062d718c4e3956e761387e44414cc5818c52de6c98c1da26e1f09fe5
- SHA512
  
  0388f4e9b5acf91c9cd10728740c30ff924548f6daed6334ab260e638b8956ad0d8023676848eaf623a9f6d920b5d7f97c93a6d6d401dc3ab6bf288dfe424b5e
- SSDEEP
  
  384:iEMU+f+cceprjdKPRNIO1EhzQULIW8bA+9Lnp2bhHV/9A:itzpnKNsLIVx91ST6
Score

1^/10
behavioral21 behavioral22
- Target
  
  windows/loaders/archldr_tar.py
- Size
  
  5KB
- MD5
  
  96b8b409ff27709b114b1438b25f21db
- SHA1
  
  aaa2e2546618f0ebcf4a34f713553898cf2b844d
- SHA256
  
  2c7c318d71e47522557d7a1cb4399bb8322500b9008628e04d83bd64260c1538
- SHA512
  
  5a7efe31729e68ec478685185c5a9be864431f506720ee34a7ba9d7f83eccaaf21a0ef362240c02ca9a1965c0cd6e8f7420234d2047e20c900864ce8c4f03ec1
- SSDEEP
  
  96:M7cJLweUiQfkoTM/lWbbDj6iak2aJbJ7tvWf4lQF:M7cH7AkoTM/lCikxJb9tvWeQF
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  windows/loaders/archldr_zip.dll
- Size
  
  26KB
- MD5
  
  3752c34ec8f8225a769290e45dcf021c
- SHA1
  
  667f6aca7c5243d14221cd79883b5bc1281b0043
- SHA256
  
  2cb2a07d800edc4240951a03a78f2ff7292746c20e0a74ebb74636d59a47a666
- SHA512
  
  d939d9d76a775de73283fcccfcfe11d1732f57fae6a7027659156f31385c64c5cceaddd2556e8568ff60575097d702ca5f76e916c6cd96db9388e18b034b79e8
- SSDEEP
  
  768:O2LBLw44YU3Ja5kQERpQqCXrfaYX5aBd:O2LRw4+3JQviNYpaB
Score

1^/10
behavioral25 behavioral26
- Target
  
  windows/loaders/bfltldr.py
- Size
  
  7KB
- MD5
  
  c03afd43bd40b6c7d815f04cae20fe1d
- SHA1
  
  5613b4e98965a02816e58f3e8f463f6aa1ee08c8
- SHA256
  
  7c53dedf35cb5377ca0bf66827cf771bd333eac7665c8ba356bfad2431fd108e
- SHA512
  
  d2079e4b290abe4785058d7dfb16710abe9c4b17b818aee479781dcf7120d0f3c8aedb68d1f528dda6cb0e2470819784de549e3c8a364715be7493192acd7e02
- SSDEEP
  
  96:NTmWPklDXfN0UNyqvmUZyOnIMnm2l35MbJrayWPcfmV+0GSJJ:LPklPKG1vZvLl3ybJ7zmV+0rJJ
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  windows/loaders/bios_image.py
- Size
  
  3KB
- MD5
  
  3831299022299adc5c9f5c2ec96bc378
- SHA1
  
  1c73e7b776a528fe7799df68cce64b1592efd9ae
- SHA256
  
  4a1c5f21352e16ef0fa83b57f5ee8d9726c3e55a0671c25b5bdcfa9031b1ec10
- SHA512
  
  5909d0c48ac445ea3838bc4023c03617dd6bbc8958708660187dcc44e82590e4330196119ab43588845583d441d7636c61c27228f6dd2ea6ca3e8b47cb534a20
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  windows/loaders/bochsrc.dll
- Size
  
  13KB
- MD5
  
  fea9c12c1ef9d2b3cfad22d9a17d281f
- SHA1
  
  2af5362b8d786d833e7ab0506c48017cbd4c0a6a
- SHA256
  
  3b6de448b416dd3daae741224004ffe01a07aac9859968bdc408ca9059fe8839
- SHA512
  
  1737ac8124221cd2f0cd2c8a72b62df2d6bd0e74476ecdd2b85ab24c892acad4da06ec881c3a767b3d2d8d2ba9091b8e73e068cbd48dbc6def94f49bb0cb97d3
- SSDEEP
  
  192:RMv+rOgbMQH9ODIVEUUs4jYuDqfnWpOQs2P2+AHl/N8+:q+rOGH9ODU4TDAnWpc2KHl/6
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32