Overview

overview

7

Static

static

3

2024-01-23...uk.exe

windows7-x64

1

2024-01-23...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-23_8debdbabf6a2c39a69c537cc7faea771_ryuk

  • Size

    5.5MB

  • Sample

    240123-jjpwrsgedk

  • MD5

    8debdbabf6a2c39a69c537cc7faea771

  • SHA1

    524c6d227aad1ac2f4be93b0c21270801aa6486a

  • SHA256

    39f437782a4476430f0c652e7f7e3012c2273ee71c31193e0bb87c3770d96373

  • SHA512

    9660e02c4568ba2d3f9861a5b246d2cc0cd3859188b8cfa57565cfd8106fbaf7e4960c48cd7143300ef865560b03e84d69f1bd341b65e7bfaf03d69230b7c82c

  • SSDEEP

    49152:SEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGfQ:4AI5pAdV9n9tbnR1VgBVmDC17DVqFJU

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-01-23_8debdbabf6a2c39a69c537cc7faea771_ryuk

    • Size

      5.5MB

    • MD5

      8debdbabf6a2c39a69c537cc7faea771

    • SHA1

      524c6d227aad1ac2f4be93b0c21270801aa6486a

    • SHA256

      39f437782a4476430f0c652e7f7e3012c2273ee71c31193e0bb87c3770d96373

    • SHA512

      9660e02c4568ba2d3f9861a5b246d2cc0cd3859188b8cfa57565cfd8106fbaf7e4960c48cd7143300ef865560b03e84d69f1bd341b65e7bfaf03d69230b7c82c

    • SSDEEP

      49152:SEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGfQ:4AI5pAdV9n9tbnR1VgBVmDC17DVqFJU

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks