General

  • Target

    2024-04-03_f31ef8175f9b79650d775487c288e561_ryuk

  • Size

    2.2MB

  • Sample

    240403-mlxwyacb7v

  • MD5

    f31ef8175f9b79650d775487c288e561

  • SHA1

    ebb96a53fbe89c45b787bbf288984254f6f0ffdc

  • SHA256

    d71315f5cfe9a94477821c755425459015a40beadacd3c68359329634b34cd07

  • SHA512

    68a3de5db625a06fb21933ece7bcf6c5edc7c608beb72820db9062a7f85215fc99066d32a48d2b8ef623eb81b71e7855cbec3b70fc0b69c1aa9d27ca935ddde8

  • SSDEEP

    49152:KWWu1zKeIxNj2bchBluP3GiyBKDKd5/IbsT0:KWBMNj3Zo20bs

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_f31ef8175f9b79650d775487c288e561_ryuk

    • Size

      2.2MB

    • MD5

      f31ef8175f9b79650d775487c288e561

    • SHA1

      ebb96a53fbe89c45b787bbf288984254f6f0ffdc

    • SHA256

      d71315f5cfe9a94477821c755425459015a40beadacd3c68359329634b34cd07

    • SHA512

      68a3de5db625a06fb21933ece7bcf6c5edc7c608beb72820db9062a7f85215fc99066d32a48d2b8ef623eb81b71e7855cbec3b70fc0b69c1aa9d27ca935ddde8

    • SSDEEP

      49152:KWWu1zKeIxNj2bchBluP3GiyBKDKd5/IbsT0:KWBMNj3Zo20bs

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks