General

  • Target

    2024-04-06_63b71e94e2fae8d298a249d97102e1d2_ryuk

  • Size

    2.1MB

  • Sample

    240406-fa6alsbd44

  • MD5

    63b71e94e2fae8d298a249d97102e1d2

  • SHA1

    7f0dc95fe01d62b1ba1db88d0ff960775efbe7fb

  • SHA256

    97ef57f94e75c3574a8a86f5a63ad7b9f7df66066fd3a407c2068319b50e0290

  • SHA512

    58781fe786f3de159dbe25962b0273f116542029aab00fe2c7f8821b5fd3e9b6961165172800630b665ce562852774db2e8cf38610c0252d116082e54e5b8978

  • SSDEEP

    49152:5sOwbb13ntb+g2nxDv1PZ1LTbxgDUYmvFur31yAipQCtXxc0H:5I13tb+Z30U7dG1yfpVBlH

Score
7/10

Malware Config

Targets

    • Target

      2024-04-06_63b71e94e2fae8d298a249d97102e1d2_ryuk

    • Size

      2.1MB

    • MD5

      63b71e94e2fae8d298a249d97102e1d2

    • SHA1

      7f0dc95fe01d62b1ba1db88d0ff960775efbe7fb

    • SHA256

      97ef57f94e75c3574a8a86f5a63ad7b9f7df66066fd3a407c2068319b50e0290

    • SHA512

      58781fe786f3de159dbe25962b0273f116542029aab00fe2c7f8821b5fd3e9b6961165172800630b665ce562852774db2e8cf38610c0252d116082e54e5b8978

    • SSDEEP

      49152:5sOwbb13ntb+g2nxDv1PZ1LTbxgDUYmvFur31yAipQCtXxc0H:5I13tb+Z30U7dG1yfpVBlH

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks