General

  • Target

    2024-04-03_6509005b6dd4f631824ad3b63a8f2064_ryuk

  • Size

    940KB

  • Sample

    240403-l12yrscc95

  • MD5

    6509005b6dd4f631824ad3b63a8f2064

  • SHA1

    0396015e1b7e2ed6ff98ac2fe239fe3703f6fc7a

  • SHA256

    e16af10e39a2d7b9c1d4c08a1daf569bd2d5deb2239e32f5b2db86dfccc17fb5

  • SHA512

    b07c6e189f28476d0631158580f054db6e8cd45bc04e7acb984341e7d566390d767d96bcf463f7b7d1bd31376e107b305677fe49ba4c54db72e0a1f6aee342ef

  • SSDEEP

    12288:HOb9A4LWOsvAYFTMqzX/7Rs1m5PMIq54d0FyY5H3vhj6bCzmEQ9dQ1hDT:opL3UTMq7Os5PMI9C3Z3vpcEsWnT

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_6509005b6dd4f631824ad3b63a8f2064_ryuk

    • Size

      940KB

    • MD5

      6509005b6dd4f631824ad3b63a8f2064

    • SHA1

      0396015e1b7e2ed6ff98ac2fe239fe3703f6fc7a

    • SHA256

      e16af10e39a2d7b9c1d4c08a1daf569bd2d5deb2239e32f5b2db86dfccc17fb5

    • SHA512

      b07c6e189f28476d0631158580f054db6e8cd45bc04e7acb984341e7d566390d767d96bcf463f7b7d1bd31376e107b305677fe49ba4c54db72e0a1f6aee342ef

    • SSDEEP

      12288:HOb9A4LWOsvAYFTMqzX/7Rs1m5PMIq54d0FyY5H3vhj6bCzmEQ9dQ1hDT:opL3UTMq7Os5PMI9C3Z3vpcEsWnT

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks