General

  • Target

    2024-04-03_41225a90ebb70ca5acad8dda2be68c6e_ryuk

  • Size

    1.7MB

  • Sample

    240403-lx25cscc66

  • MD5

    41225a90ebb70ca5acad8dda2be68c6e

  • SHA1

    e2964f0f562cc77ca0aa58663fb6e772afd19ead

  • SHA256

    cbc1f714dfb128f2d03c2f196450ba8e925dcb3ce2cd824f6651c2aae8b0ef70

  • SHA512

    66fb3a4607c9e83aab1d77656ba2546dcb0432809b3a15d4d6bcfab18845c8937c36712f78ad5afdf93330e3b6d8296c3937ad053f2f23224958d31534d39152

  • SSDEEP

    49152:ogtHUujpj7AewZdZhRdhJa1DUg6J9wh6+w:bFh4ZhCDU5J9ws+

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_41225a90ebb70ca5acad8dda2be68c6e_ryuk

    • Size

      1.7MB

    • MD5

      41225a90ebb70ca5acad8dda2be68c6e

    • SHA1

      e2964f0f562cc77ca0aa58663fb6e772afd19ead

    • SHA256

      cbc1f714dfb128f2d03c2f196450ba8e925dcb3ce2cd824f6651c2aae8b0ef70

    • SHA512

      66fb3a4607c9e83aab1d77656ba2546dcb0432809b3a15d4d6bcfab18845c8937c36712f78ad5afdf93330e3b6d8296c3937ad053f2f23224958d31534d39152

    • SSDEEP

      49152:ogtHUujpj7AewZdZhRdhJa1DUg6J9wh6+w:bFh4ZhCDU5J9ws+

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks