9e73f0bbb03f2bba8119ba7c31b0105eb7388ac15fb1458d71a9dfbf4890eb0c | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-02-02...uk.exe

windows7-x64

5

2024-02-02...uk.exe

windows10-2004-x64

7

Sharing

General

Target

2024-02-02_5d970cb86b40ce86876f8ae8f171d389_cobalt-strike_ryuk
Size

946KB
Sample

240202-xf6a8sfadq
MD5

5d970cb86b40ce86876f8ae8f171d389
SHA1

4c9f8333922d56bb7fc0e44f287dda9e10e84f8e
SHA256

9e73f0bbb03f2bba8119ba7c31b0105eb7388ac15fb1458d71a9dfbf4890eb0c
SHA512

4cecdc2f559f079ce6d61450567fc8d8c543e361ed896aa80d3c08d3bf841e6f98889fe74bbc39691ffc40518d35181fc694d10b42ea14aec852e381f2b03048
SSDEEP

24576:STgnpwJ+RSVqIi2lObXobHAEW9INFJY0au:60dSw7x03jY0a

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-02-02_5d970cb86b40ce86876f8ae8f171d389_cobalt-strike_ryuk.exe

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-02_5d970cb86b40ce86876f8ae8f171d389_cobalt-strike_ryuk.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-02_5d970cb86b40ce86876f8ae8f171d389_cobalt-strike_ryuk
- Size
  
  946KB
- MD5
  
  5d970cb86b40ce86876f8ae8f171d389
- SHA1
  
  4c9f8333922d56bb7fc0e44f287dda9e10e84f8e
- SHA256
  
  9e73f0bbb03f2bba8119ba7c31b0105eb7388ac15fb1458d71a9dfbf4890eb0c
- SHA512
  
  4cecdc2f559f079ce6d61450567fc8d8c543e361ed896aa80d3c08d3bf841e6f98889fe74bbc39691ffc40518d35181fc694d10b42ea14aec852e381f2b03048
- SSDEEP
  
  24576:STgnpwJ+RSVqIi2lObXobHAEW9INFJY0au:60dSw7x03jY0a
Score

7^/10
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy