industroyer | 4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898 | Triage

Submit
Reports

Overview

overview

Static

static

3

idapro_90_x64win.exe

windows10-ltsc 2021-x64

idapro_90_x64win.exe

windows11-21h2-x64

Sharing

General

Target

idapro_90_x64win.exe
Size

421.7MB
Sample

250214-1mmdgsyrdr
MD5

8583d7721daba98843c15d5280362f00
SHA1

ae48b47dc10e80ee7b0879819b9893ad88485be4
SHA256

4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898
SHA512

b6e90766fc159ba5fed4468bc2e16e94b8c4faf989adf4138a1f83f3a53fe57f9838ce708b3b1178b23a5aa9bfd7a74aa58e937ed0663fe481477d72070a9252
SSDEEP

12582912:HbZ0vgh5tSwNU1A9extCypOOZsZquwbxvPEvqNY:7Zagh5tSwN+J/ObquGJPpY

Score

10^/10

industroyer defense_evasion discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

idapro_90_x64win.exe

Resource

win10ltsc2021-20250211-en

industroyer defense_evasion discovery trojan

windows10-ltsc 2021-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

idapro_90_x64win.exe

Resource

win11-20250210-en

industroyer defense_evasion discovery trojan

windows11-21h2-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  idapro_90_x64win.exe
- Size
  
  421.7MB
- MD5
  
  8583d7721daba98843c15d5280362f00
- SHA1
  
  ae48b47dc10e80ee7b0879819b9893ad88485be4
- SHA256
  
  4d360d83c01b5554e531e36719a215617247f90d2e2fc61c80841e033039b898
- SHA512
  
  b6e90766fc159ba5fed4468bc2e16e94b8c4faf989adf4138a1f83f3a53fe57f9838ce708b3b1178b23a5aa9bfd7a74aa58e937ed0663fe481477d72070a9252
- SSDEEP
  
  12582912:HbZ0vgh5tSwNU1A9extCypOOZsZquwbxvPEvqNY:7Zagh5tSwN+J/ObquGJPpY
Score

10^/10

industroyer defense_evasion discovery trojan
- Industroyer
  Contains code associated with parsing industroyer's configuration file.
- Industroyer family
  industroyer
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  defense_evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

industroyerdefense_evasiondiscoverytrojan

behavioral2

industroyerdefense_evasiondiscoverytrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.