Overview

overview

7

Static

static

3

2024-02-23...uk.exe

windows7-x64

1

2024-02-23...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-23_ccd18a8094ec14576d96bb139352192a_ryuk

  • Size

    5.5MB

  • Sample

    240223-qwfbesbd41

  • MD5

    ccd18a8094ec14576d96bb139352192a

  • SHA1

    ea837342f77cf98fce00894cc44970393d38d45e

  • SHA256

    218a50ce65a90d498f5c42ab812f060805b778aa9940c26a49a771b7d4e0e3a1

  • SHA512

    31eac649d7d77cbcc75c13c5f8da6661e26edb9ca2da47385a9aa2c4890b7fb988685e41f7607f3d639279cc4b4adbddd5504e8ce58f4753e89e4262b693e346

  • SSDEEP

    49152:sEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:aAI5pAdVJn9tbnR1VgBVmJyE691E

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-02-23_ccd18a8094ec14576d96bb139352192a_ryuk

    • Size

      5.5MB

    • MD5

      ccd18a8094ec14576d96bb139352192a

    • SHA1

      ea837342f77cf98fce00894cc44970393d38d45e

    • SHA256

      218a50ce65a90d498f5c42ab812f060805b778aa9940c26a49a771b7d4e0e3a1

    • SHA512

      31eac649d7d77cbcc75c13c5f8da6661e26edb9ca2da47385a9aa2c4890b7fb988685e41f7607f3d639279cc4b4adbddd5504e8ce58f4753e89e4262b693e346

    • SSDEEP

      49152:sEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:aAI5pAdVJn9tbnR1VgBVmJyE691E

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks