Overview

overview

7

Static

static

3

2024-02-01...uk.exe

windows7-x64

7

2024-02-01...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-01_f172fc6ee8f905c6c52673b8a6ee086f_ryuk

  • Size

    30.1MB

  • Sample

    240201-s9blhabbck

  • MD5

    f172fc6ee8f905c6c52673b8a6ee086f

  • SHA1

    56a36f14bd3c1cfc2eafb907bdc8d0ddbf901598

  • SHA256

    bd66d94384f2b782e89501c53ce56944a538a592586ef58f2fd0e5e010b8656e

  • SHA512

    248083460ab92b65eadb7f4fe95860257c096a643b99c5cd4133ba7aa51c2c07f763408c06936e100f367c9e5ab0b02a2c3656e84ede754b4d93a26d15d5cc90

  • SSDEEP

    786432:iqnTQ2Z7kLBQB5Ebg0yB/YezOnzLKBaRY6YeS+Le:iaTn4QB5EE0yB/YezUpYeq

Score
7/10
discoveryevasiontrojan

Malware Config

Targets

    • Target

      2024-02-01_f172fc6ee8f905c6c52673b8a6ee086f_ryuk

    • Size

      30.1MB

    • MD5

      f172fc6ee8f905c6c52673b8a6ee086f

    • SHA1

      56a36f14bd3c1cfc2eafb907bdc8d0ddbf901598

    • SHA256

      bd66d94384f2b782e89501c53ce56944a538a592586ef58f2fd0e5e010b8656e

    • SHA512

      248083460ab92b65eadb7f4fe95860257c096a643b99c5cd4133ba7aa51c2c07f763408c06936e100f367c9e5ab0b02a2c3656e84ede754b4d93a26d15d5cc90

    • SSDEEP

      786432:iqnTQ2Z7kLBQB5Ebg0yB/YezOnzLKBaRY6YeS+Le:iaTn4QB5EE0yB/YezUpYeq

    Score
    7/10
    discoveryevasiontrojan

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks