Overview

overview

3

Static

static

3

2024-02-13...uk.exe

windows7-x64

1

2024-02-13...uk.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13-02-2024 10:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-02-13_517fc0fdc7146c7453cccddc9f961220_ryuk.exe

  • Size

    1.2MB

  • MD5

    517fc0fdc7146c7453cccddc9f961220

  • SHA1

    2739d98958fea31a026bd6a184fbb90fec845970

  • SHA256

    0c3f91124113d1d3b7b4b28eb4896907e75e8ad0d6b2bd388437b387f8dc9412

  • SHA512

    936ebb2991fc8f305f725736b43aa2e522729f295e18271d7d5094595339275b36ef02efaa572df934d4e1084db5f78b0c3c7e25eaeaf6b1e1a531f4bed0edcd

  • SSDEEP

    24576:Q+wVjvsuwFuaAjekhzZQED9TMjCovsrrWse3LLKmTKew7k0TTVNf07+:Q+wVjvsuSuaASk3Qa9T0vmWsoWmTKew6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-02-13_517fc0fdc7146c7453cccddc9f961220_ryuk.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-02-13_517fc0fdc7146c7453cccddc9f961220_ryuk.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2528

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\IPlugSpectFFT\settings.ini
    Filesize

    189B

    MD5

    77fb254fae75edc9775b6061390caa3a

    SHA1

    b0bd7bddfa8e86470e5975c937e888810f9b2a3b

    SHA256

    65fde51ae69a86c0a3b2b2ab6de8bd593386d6b78e27f20d2f11e561e4d11c45

    SHA512

    d169923de03e0cda28562075804165cf654a042df553eb8c3ecbd520001371537f95dc1373a15a875b6b5c88da8ace5012a6b2d287582d3e5e4a64a7c668b16d

    Download Submit