3627d3266098a60da43acc2cde5657e8fdb28dc762fe8453e7d5e051b92ee999

Submit
Reports

Overview

overview

Static

static

IDA Pro 9....da.dll

windows7-x64

IDA Pro 9....da.dll

windows10-2004-x64

IDA Pro 9....32.dll

windows7-x64

IDA Pro 9....32.dll

windows10-2004-x64

IDA Pro 9....hv.exe

windows7-x64

IDA Pro 9....hv.exe

windows10-2004-x64

IDA Pro 9....ui.exe

windows7-x64

IDA Pro 9....ui.exe

windows10-2004-x64

IDA Pro 9....nks.sh

ubuntu-18.04-amd64

IDA Pro 9....nks.sh

debian-9-armhf

IDA Pro 9....nks.sh

debian-9-mips

IDA Pro 9....nks.sh

debian-9-mipsel

IDA Pro 9....de.pdf

windows7-x64

IDA Pro 9....de.pdf

windows10-2004-x64

IDA Pro 9....ent.so

ubuntu-22.04-amd64

IDA Pro 9....server

ubuntu-24.04-amd64

IDA Pro 9....r_orig

ubuntu-24.04-amd64

IDA Pro 9....in.exe

windows7-x64

IDA Pro 9....in.exe

windows10-2004-x64

misc/hexli...ux.run

ubuntu-22.04-amd64

misc/hexva...ux.run

ubuntu-24.04-amd64

idasdk90/m...mu.vbs

windows7-x64

idasdk90/m...mu.vbs

windows10-2004-x64

idasdk90/m...mu.vbs

windows7-x64

idasdk90/m...mu.vbs

windows10-2004-x64

idasdk90/m...850.js

windows7-x64

idasdk90/m...850.js

windows10-2004-x64

idasdk90/m...na.vbs

windows7-x64

idasdk90/m...na.vbs

windows10-2004-x64

idasdk90/m...mu.vbs

windows7-x64

idasdk90/m...mu.vbs

windows10-2004-x64

idasdk90/m...ebc.py

windows7-x64

Resubmissions

21-01-2025 14:18

17-01-2025 12:26

17-01-2025 10:57

14-01-2025 16:30

Analysis

max time kernel
24s
platform
debian-9_mipsel
resource
debian9-mipsel-20240611-en
resource tags

arch:mipselimage:debian9-mipsel-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
14-01-2025 16:30

Sharing

Copy URL

Twitter E-mail

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

IDA Pro 9.0.240925/Crack/cracked+lic/ida.dll

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

IDA Pro 9.0.240925/Crack/cracked+lic/ida.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

IDA Pro 9.0.240925/Crack/cracked+lic/ida32.dll

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

IDA Pro 9.0.240925/Crack/cracked+lic/ida32.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

IDA Pro 9.0.240925/Crack/hexvault_client_90_cracked/hv.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

IDA Pro 9.0.240925/Crack/hexvault_client_90_cracked/hv.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

IDA Pro 9.0.240925/Crack/hexvault_client_90_cracked/hvui.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

IDA Pro 9.0.240925/Crack/hexvault_client_90_cracked/hvui.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh

Resource

debian9-mipsbe-20240729-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/ida_teams_admin_guide.pdf

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/ida_teams_admin_guide.pdf

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral15

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/libmysqlclient.so

Resource

ubuntu2204-amd64-20240522.1-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/vault_server

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/vault_server_orig

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

IDA Pro 9.0.240925/Setup/ida-pro_90_x64win.exe

Resource

win7-20240903-en

industroyer discovery evasion persistence trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral19

Sample

IDA Pro 9.0.240925/Setup/ida-pro_90_x64win.exe

Resource

win10v2004-20241007-en

industroyer discovery evasion persistence privilege_escalation trojan

windows10-2004-x64

25 signatures

150 seconds

Behavioral task

behavioral20

Sample

misc/hexlicsrv90_x64linux.run

Resource

ubuntu2204-amd64-20240729-en

antivm discovery

ubuntu-22.04-amd64

7 signatures

150 seconds

Behavioral task

behavioral21

Sample

misc/hexvault90_x64linux.run

Resource

ubuntu2404-amd64-20240523-en

antivm credential_access defense_evasion discovery execution persistence

ubuntu-24.04-amd64

12 signatures

150 seconds

Behavioral task

behavioral22

Sample

idasdk90/module/m7900/emu.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

idasdk90/module/m7900/emu.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

idasdk90/module/mn102/emu.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

idasdk90/module/mn102/emu.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

idasdk90/module/nec850/necv850.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

idasdk90/module/nec850/necv850.js

Resource

win10v2004-20241007-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

idasdk90/module/sam8/ana.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

idasdk90/module/sam8/ana.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

idasdk90/module/sam8/emu.vbs

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

idasdk90/module/sam8/emu.vbs

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

idasdk90/module/script/ebc.py

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh
Size

180B
MD5

e100a577c32b605faa9fbfa54efa9fc5
SHA1

1e555f8abbc2b0785d7ae4b7f46d2661d9054c72
SHA256

55b3842d221b9471f2ff2ece4a70ebe9f229f3df7a7dd8cf65f0d873de15ee56
SHA512

a898272aa10178e1a3aa627fd985d6e9930a92b9f8bacb5f9dfac9f3ca11794c3aff85f85a8b38bdc3c5c6d1c123445dbe782a62074e87af7cac496d5a55da20

Score

1^/10

Malware Config

Signatures

Processes

/tmp/IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh
"/tmp/IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/create_links.sh"
1⤵
PID:803
- /bin/ln
  ln -s /tmp/IDA Pro 9.0.240925/Crack/hexvault_server_90_cracked/hexvault.service /etc/systemd/system/hexvault.service
  2⤵
  PID:805
- /bin/ln
  ln -s /etc/systemd/system/hexvault.service /etc/systemd/system/multi-user.target.wants/hexvault.service
  2⤵
  PID:806

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads