General

  • Target

    2024-04-03_c1357631a47609b17b8367617f39b0ad_ryuk

  • Size

    2.2MB

  • Sample

    240403-l7pa9abh91

  • MD5

    c1357631a47609b17b8367617f39b0ad

  • SHA1

    d799c24bc6cf52644fc01a924a94410def453bb6

  • SHA256

    1027c31da240afce672cbe135bfd51fb78f7eecf460ec7bba31f943849959fb1

  • SHA512

    31f280e57546b35f7bf211f0c50a91d3c53cbb24934808fe25faa6e7d581e78716de0866c3930e510b05a683d089d57080e8b585ee1303757c99bed50b6057c1

  • SSDEEP

    49152:WWWu1zKeIxNj2bchBluP3GiyBKDUvHs3M9sR:WWBMNj3Zois3/

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_c1357631a47609b17b8367617f39b0ad_ryuk

    • Size

      2.2MB

    • MD5

      c1357631a47609b17b8367617f39b0ad

    • SHA1

      d799c24bc6cf52644fc01a924a94410def453bb6

    • SHA256

      1027c31da240afce672cbe135bfd51fb78f7eecf460ec7bba31f943849959fb1

    • SHA512

      31f280e57546b35f7bf211f0c50a91d3c53cbb24934808fe25faa6e7d581e78716de0866c3930e510b05a683d089d57080e8b585ee1303757c99bed50b6057c1

    • SSDEEP

      49152:WWWu1zKeIxNj2bchBluP3GiyBKDUvHs3M9sR:WWBMNj3Zois3/

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks