General

  • Target

    2024-04-03_60aa0fdad2e2aa0150825f19b5c30ff4_ryuk

  • Size

    5.5MB

  • Sample

    240403-ptv4esdb7x

  • MD5

    60aa0fdad2e2aa0150825f19b5c30ff4

  • SHA1

    344606e78a0e7b04370b74a6a79c12efe510d7f7

  • SHA256

    11073d014e6030f3fd360f5fb86285a84f349f402cf2bea8c55f0da92791abc3

  • SHA512

    266103b1c12cd4d43f9bf6523d9589f01fc7f0320225754c7fc8a4fc5fe39671eb84199d9683f0453bfde67c01e9aaaabd4b7b211ee98f937607348e87cb6db8

  • SSDEEP

    98304:9AI5pAdVJn9tbnR1VgBVmmU7dG1yfpVBlH:9AsCh7XY/UoiPBx

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_60aa0fdad2e2aa0150825f19b5c30ff4_ryuk

    • Size

      5.5MB

    • MD5

      60aa0fdad2e2aa0150825f19b5c30ff4

    • SHA1

      344606e78a0e7b04370b74a6a79c12efe510d7f7

    • SHA256

      11073d014e6030f3fd360f5fb86285a84f349f402cf2bea8c55f0da92791abc3

    • SHA512

      266103b1c12cd4d43f9bf6523d9589f01fc7f0320225754c7fc8a4fc5fe39671eb84199d9683f0453bfde67c01e9aaaabd4b7b211ee98f937607348e87cb6db8

    • SSDEEP

      98304:9AI5pAdVJn9tbnR1VgBVmmU7dG1yfpVBlH:9AsCh7XY/UoiPBx

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks