General

  • Target

    2024-04-07_67b2a42e5719bae4aa2cdbda7aa533bb_ryuk

  • Size

    6.8MB

  • Sample

    240407-3hk1zaaa25

  • MD5

    67b2a42e5719bae4aa2cdbda7aa533bb

  • SHA1

    32019709338b0b4edd4f9047a78ab1f7f39de3cd

  • SHA256

    335857898fccba036e634cddc73ee3812929ac3a0a76045127362d21fb91917d

  • SHA512

    3f6a84bcbce6d427d9b2e0b7df91694a79da3337872c9c250cd72537bd7bf366e5da5391ef3c0f0522d8774ed6f2ec86474cd29c2f2bf209f7c91c2156721382

  • SSDEEP

    196608:iEKDROWCMZncBmuAQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQy:iE8ROWCMZncx

Score
8/10

Malware Config

Targets

    • Target

      2024-04-07_67b2a42e5719bae4aa2cdbda7aa533bb_ryuk

    • Size

      6.8MB

    • MD5

      67b2a42e5719bae4aa2cdbda7aa533bb

    • SHA1

      32019709338b0b4edd4f9047a78ab1f7f39de3cd

    • SHA256

      335857898fccba036e634cddc73ee3812929ac3a0a76045127362d21fb91917d

    • SHA512

      3f6a84bcbce6d427d9b2e0b7df91694a79da3337872c9c250cd72537bd7bf366e5da5391ef3c0f0522d8774ed6f2ec86474cd29c2f2bf209f7c91c2156721382

    • SSDEEP

      196608:iEKDROWCMZncBmuAQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQy:iE8ROWCMZncx

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks