General

  • Target

    2024-04-03_e43635f48f64f6d6a1b6c80b63c36ec3_ryuk

  • Size

    1.8MB

  • Sample

    240403-mhp2xsce88

  • MD5

    e43635f48f64f6d6a1b6c80b63c36ec3

  • SHA1

    990b2503070a770da9d673d263c5b8e6313552dd

  • SHA256

    5af66372e4eb5fcc9ab55c166891b2a586543124f05fc7e8c2360e9c20e0ef5b

  • SHA512

    0249df63bd0b0b7639c41107178ca57752785259835c92e305df418d243945cd63cff6fc024c28554eb7b073e23ef1be049d063daa858e4d647b323cc9604d68

  • SSDEEP

    49152:qKfuPS3ELNjV7yZxEfOfOgwf0WDmg27RnWGj:Nm92ZxwgGD527BWG

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_e43635f48f64f6d6a1b6c80b63c36ec3_ryuk

    • Size

      1.8MB

    • MD5

      e43635f48f64f6d6a1b6c80b63c36ec3

    • SHA1

      990b2503070a770da9d673d263c5b8e6313552dd

    • SHA256

      5af66372e4eb5fcc9ab55c166891b2a586543124f05fc7e8c2360e9c20e0ef5b

    • SHA512

      0249df63bd0b0b7639c41107178ca57752785259835c92e305df418d243945cd63cff6fc024c28554eb7b073e23ef1be049d063daa858e4d647b323cc9604d68

    • SSDEEP

      49152:qKfuPS3ELNjV7yZxEfOfOgwf0WDmg27RnWGj:Nm92ZxwgGD527BWG

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks