Overview

overview

7

Static

static

3

2024-03-26...uk.exe

windows7-x64

1

2024-03-26...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-26_83f3567f1be54f6bb5db6e6a85253f89_ryuk

  • Size

    1.7MB

  • Sample

    240326-1e7pfsfh6s

  • MD5

    83f3567f1be54f6bb5db6e6a85253f89

  • SHA1

    a86d2246f79adfbf84ccef0d70c86954dfd975d3

  • SHA256

    5ceadb615a6f664adc341246eed2ed017e302cb0b16fc1c83007a0e2f99d20ad

  • SHA512

    fece9240238f8fad9db79fee13f624b0789831896186962661d77513855540cc8cadf7eb27c156c7a4b7c59caf45dfb5a4366784212daefdf303dd3103badddc

  • SSDEEP

    24576:/iBE0zqwXeAVmYceKqcqly3NLUHIhG7vSwUnX0ea0d:be5Xe6X2Gy3NLFwjFAXFaU

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-03-26_83f3567f1be54f6bb5db6e6a85253f89_ryuk

    • Size

      1.7MB

    • MD5

      83f3567f1be54f6bb5db6e6a85253f89

    • SHA1

      a86d2246f79adfbf84ccef0d70c86954dfd975d3

    • SHA256

      5ceadb615a6f664adc341246eed2ed017e302cb0b16fc1c83007a0e2f99d20ad

    • SHA512

      fece9240238f8fad9db79fee13f624b0789831896186962661d77513855540cc8cadf7eb27c156c7a4b7c59caf45dfb5a4366784212daefdf303dd3103badddc

    • SSDEEP

      24576:/iBE0zqwXeAVmYceKqcqly3NLUHIhG7vSwUnX0ea0d:be5Xe6X2Gy3NLFwjFAXFaU

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Registers COM server for autorun

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks