Overview

overview

7

Static

static

3

2024-04-05...uk.exe

windows7-x64

1

2024-04-05...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_ab916692ff88b6ceab19d4409d8f6134_ryuk

  • Size

    5.5MB

  • Sample

    240405-s8cgeage63

  • MD5

    ab916692ff88b6ceab19d4409d8f6134

  • SHA1

    d8bde32c228b128b3df9c1c5fbd12dd2fdcb029f

  • SHA256

    d2a0d15bb2dcbeb66cc20199d1a623e3edd3cba47b8ada8fa26929992bb339cf

  • SHA512

    fa358fe24b4830d3e18e0055413d906ed7f8e2b514c6e530580d11af69db0651c66dab80f8928bcbd2dbad242f336511f21ae7f142d6f6df0290fd9ebb9b2c3e

  • SSDEEP

    49152:4EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:WAI5pAdVJn9tbnR1VgBVmTqo4w

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-05_ab916692ff88b6ceab19d4409d8f6134_ryuk

    • Size

      5.5MB

    • MD5

      ab916692ff88b6ceab19d4409d8f6134

    • SHA1

      d8bde32c228b128b3df9c1c5fbd12dd2fdcb029f

    • SHA256

      d2a0d15bb2dcbeb66cc20199d1a623e3edd3cba47b8ada8fa26929992bb339cf

    • SHA512

      fa358fe24b4830d3e18e0055413d906ed7f8e2b514c6e530580d11af69db0651c66dab80f8928bcbd2dbad242f336511f21ae7f142d6f6df0290fd9ebb9b2c3e

    • SSDEEP

      49152:4EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:WAI5pAdVJn9tbnR1VgBVmTqo4w

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks