Overview

overview

7

Static

static

3

2024-03-09...uk.exe

windows7-x64

7

2024-03-09...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-09_84557a2e97cf2219b50c87091f82e42a_ryuk

  • Size

    4.1MB

  • Sample

    240309-ljxmqaee99

  • MD5

    84557a2e97cf2219b50c87091f82e42a

  • SHA1

    87147c647795a8926483d30897567cd50b9ea27c

  • SHA256

    900cd6041e72ce9c59126461b63eff96beda46cbcfa4433af0e5b62571dd0f33

  • SHA512

    5da23e5716c727e6fbf33895806123941557a5973671f6b295dead5fdcf3411fd7406b9e9ca1596643a1dd278b7e6390a11687c5e729051ef5521d5e97875469

  • SSDEEP

    49152:i5Viqwo4KxghcyJLBaSbvviqMjfBV+TFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr9i:iBfr+TFFqRlw6a+bU7dG1yfpVBlH

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-03-09_84557a2e97cf2219b50c87091f82e42a_ryuk

    • Size

      4.1MB

    • MD5

      84557a2e97cf2219b50c87091f82e42a

    • SHA1

      87147c647795a8926483d30897567cd50b9ea27c

    • SHA256

      900cd6041e72ce9c59126461b63eff96beda46cbcfa4433af0e5b62571dd0f33

    • SHA512

      5da23e5716c727e6fbf33895806123941557a5973671f6b295dead5fdcf3411fd7406b9e9ca1596643a1dd278b7e6390a11687c5e729051ef5521d5e97875469

    • SSDEEP

      49152:i5Viqwo4KxghcyJLBaSbvviqMjfBV+TFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr9i:iBfr+TFFqRlw6a+bU7dG1yfpVBlH

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks