General

  • Target

    2024-04-03_2b1aaa003ed82f02dc63f3d80710d7e7_ryuk

  • Size

    5.5MB

  • Sample

    240403-w67rbahd78

  • MD5

    2b1aaa003ed82f02dc63f3d80710d7e7

  • SHA1

    a8e7c4a2b4d665564a384c148d28d1d6bd021bc1

  • SHA256

    8cdb92447a56b60558e54ed12ebb7abdf29a92cb973d3fd8a2bdd40f10f686e8

  • SHA512

    3cee5eb48fc609d3aac496cd3437c96a6c4cd637a5be3f95a816235c908da16df52f6ef394ce1e77a78f28ffd37bdcc1008ec1b09745b884d05c9e88ac06fe1a

  • SSDEEP

    49152:oEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGfc:mAI5pAdV/n9tbnR1VgBVmIF+iY3FPdo

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_2b1aaa003ed82f02dc63f3d80710d7e7_ryuk

    • Size

      5.5MB

    • MD5

      2b1aaa003ed82f02dc63f3d80710d7e7

    • SHA1

      a8e7c4a2b4d665564a384c148d28d1d6bd021bc1

    • SHA256

      8cdb92447a56b60558e54ed12ebb7abdf29a92cb973d3fd8a2bdd40f10f686e8

    • SHA512

      3cee5eb48fc609d3aac496cd3437c96a6c4cd637a5be3f95a816235c908da16df52f6ef394ce1e77a78f28ffd37bdcc1008ec1b09745b884d05c9e88ac06fe1a

    • SSDEEP

      49152:oEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGfc:mAI5pAdV/n9tbnR1VgBVmIF+iY3FPdo

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks