industroyer | 4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898 | Triage

Submit
Reports

Overview

overview

Static

static

3

idapro_90_x64win.exe

windows7-x64

idapro_90_x64win.exe

windows10-2004-x64

7

Sharing

General

Target

idapro_90_x64win.exe
Size

421.7MB
Sample

250211-znhw1szmdz
MD5

8583d7721daba98843c15d5280362f00
SHA1

ae48b47dc10e80ee7b0879819b9893ad88485be4
SHA256

4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898
SHA512

b6e90766fc159ba5fed4468bc2e16e94b8c4faf989adf4138a1f83f3a53fe57f9838ce708b3b1178b23a5aa9bfd7a74aa58e937ed0663fe481477d72070a9252
SSDEEP

12582912:HbZ0vgh5tSwNU1A9extCypOOZsZquwbxvPEvqNY:7Zagh5tSwN+J/ObquGJPpY

Score

10^/10

industroyer defense_evasion discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

idapro_90_x64win.exe

Resource

win7-20241010-en

industroyer defense_evasion discovery trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

idapro_90_x64win.exe

Resource

win10v2004-20250211-en

defense_evasion trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  idapro_90_x64win.exe
- Size
  
  421.7MB
- MD5
  
  8583d7721daba98843c15d5280362f00
- SHA1
  
  ae48b47dc10e80ee7b0879819b9893ad88485be4
- SHA256
  
  4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898
- SHA512
  
  b6e90766fc159ba5fed4468bc2e16e94b8c4faf989adf4138a1f83f3a53fe57f9838ce708b3b1178b23a5aa9bfd7a74aa58e937ed0663fe481477d72070a9252
- SSDEEP
  
  12582912:HbZ0vgh5tSwNU1A9extCypOOZsZquwbxvPEvqNY:7Zagh5tSwN+J/ObquGJPpY
Score

10^/10

industroyer defense_evasion discovery trojan
- Industroyer
  Contains code associated with parsing industroyer's configuration file.
- Industroyer family
  industroyer
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  defense_evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

industroyerdefense_evasiondiscoverytrojan

behavioral2

defense_evasiontrojan

© 2018-2025

Terms | Privacy