General

  • Target

    2024-02-11_cb187a13f6cce536c872735dc4ff1663_ryuk

  • Size

    12.6MB

  • MD5

    cb187a13f6cce536c872735dc4ff1663

  • SHA1

    02a06445c60f1b7c96d944d6652c0504f1eb321e

  • SHA256

    23ad7edee3f1d3494fb026a32939bf87f2c215bf31fa173a8b834a130e0458f9

  • SHA512

    84f916fbc45a6b62245e918b3551767a1c2a34c89adfd18980acaa3f8d4621273cbc13bd1a0cc61a8b5d38fbd5e4bcdaf004cd2bc732211236ce591d081bb6b0

  • SSDEEP

    196608:rLX8SiCGurDz5o/VP7TyT8xw3y0Kl2OCxnSAF9:rr78urDz5o/xT1wi0U2bj9

Score
10/10

Malware Config

Signatures

  • Detects executables packed with Dotfuscator 1 IoCs
  • Detects executables packed with SmartAssembly 1 IoCs
  • Detects executables packed with Yano Obfuscator 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-11_cb187a13f6cce536c872735dc4ff1663_ryuk
    .exe windows:5 windows x64 arch:x64

    15b0d359b0d004363a1c9a125be29113


    Headers

    Imports

    Exports

    Sections