General

  • Target

    2024-04-06_23b935f6b6ec3b17a9f89a943e7df15f_ryuk

  • Size

    1.5MB

  • Sample

    240406-e5dy6sae4v

  • MD5

    23b935f6b6ec3b17a9f89a943e7df15f

  • SHA1

    599cfc758b4d660a441b7a30f03995060a3095bc

  • SHA256

    1de781ab02974db23d1c948aaf8ef29e563e0e6e0c75ab7775770249b0b3aa54

  • SHA512

    5f1fa84a2a4180eca255db701e9b3b7e09334d804bd142a420cab1b2f2319b79f17eb47f7a496158d0180247ab5a0ee4e5068e9e05de9dc71b630bc786417262

  • SSDEEP

    12288:NObXA4LWOsvAYFTwcZRXPiqwIkFPqQKj8DkBIHCP2sEMLRv1vIVq+:qzL3UTzXN4qLqEIH7sTrvIr

Score
7/10

Malware Config

Targets

    • Target

      2024-04-06_23b935f6b6ec3b17a9f89a943e7df15f_ryuk

    • Size

      1.5MB

    • MD5

      23b935f6b6ec3b17a9f89a943e7df15f

    • SHA1

      599cfc758b4d660a441b7a30f03995060a3095bc

    • SHA256

      1de781ab02974db23d1c948aaf8ef29e563e0e6e0c75ab7775770249b0b3aa54

    • SHA512

      5f1fa84a2a4180eca255db701e9b3b7e09334d804bd142a420cab1b2f2319b79f17eb47f7a496158d0180247ab5a0ee4e5068e9e05de9dc71b630bc786417262

    • SSDEEP

      12288:NObXA4LWOsvAYFTwcZRXPiqwIkFPqQKj8DkBIHCP2sEMLRv1vIVq+:qzL3UTzXN4qLqEIH7sTrvIr

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks