Overview

overview

7

Static

static

3

2024-03-12...uk.exe

windows7-x64

7

2024-03-12...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-12_f1a9847484806401ae1bcb5849f94607_ryuk

  • Size

    691KB

  • Sample

    240312-r9qvrade58

  • MD5

    f1a9847484806401ae1bcb5849f94607

  • SHA1

    2ff5f5ab4d5a42d221d9e36e779aee66bb9e51e7

  • SHA256

    68e3e732019b48203715fa1a3bc05c4ee592e6e902cc0c57382a48b38afe0501

  • SHA512

    0db2749e07b2ddb533e4fb61240aceabd6d1ee0a25802b3cdb5d53fcf49cfef4ec16f8a5a01ffc827cd16f709784c797214cc00915006aa70ecd5d6d5f89db37

  • SSDEEP

    12288:4racl3u3JW2gh92q5H8k/jLUKciwGEBg/jKypVrtvzESII:aaclkJW2Q2tA+Bg/jNRV

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-03-12_f1a9847484806401ae1bcb5849f94607_ryuk

    • Size

      691KB

    • MD5

      f1a9847484806401ae1bcb5849f94607

    • SHA1

      2ff5f5ab4d5a42d221d9e36e779aee66bb9e51e7

    • SHA256

      68e3e732019b48203715fa1a3bc05c4ee592e6e902cc0c57382a48b38afe0501

    • SHA512

      0db2749e07b2ddb533e4fb61240aceabd6d1ee0a25802b3cdb5d53fcf49cfef4ec16f8a5a01ffc827cd16f709784c797214cc00915006aa70ecd5d6d5f89db37

    • SSDEEP

      12288:4racl3u3JW2gh92q5H8k/jLUKciwGEBg/jKypVrtvzESII:aaclkJW2Q2tA+Bg/jNRV

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks