General

  • Target

    2024-04-03_5ba9af93d5d130f64ac17473f8c5a20a_ryuk

  • Size

    2.1MB

  • Sample

    240403-l1la1scc87

  • MD5

    5ba9af93d5d130f64ac17473f8c5a20a

  • SHA1

    0d55dca12618c19be9ab629133de44f48865b32d

  • SHA256

    3e12bb63131add21f663217b67c05a7d53b41babdd00fae7ab4e8fe3f0a320a7

  • SHA512

    caedd2c7e3b181d517b8ee7f5721c1e3557f547ded0687f190e7f03fbe84ea596a20bd7af4c214fb8dfedaa7eabcca53aff1e77168727cb6ec8f4b18a2c229c2

  • SSDEEP

    49152:zsOwbb13ntb+g2nxDv1PZ1LTbXvHs3M9sR:zI13tb+Z3js3/

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_5ba9af93d5d130f64ac17473f8c5a20a_ryuk

    • Size

      2.1MB

    • MD5

      5ba9af93d5d130f64ac17473f8c5a20a

    • SHA1

      0d55dca12618c19be9ab629133de44f48865b32d

    • SHA256

      3e12bb63131add21f663217b67c05a7d53b41babdd00fae7ab4e8fe3f0a320a7

    • SHA512

      caedd2c7e3b181d517b8ee7f5721c1e3557f547ded0687f190e7f03fbe84ea596a20bd7af4c214fb8dfedaa7eabcca53aff1e77168727cb6ec8f4b18a2c229c2

    • SSDEEP

      49152:zsOwbb13ntb+g2nxDv1PZ1LTbXvHs3M9sR:zI13tb+Z3js3/

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks