General

  • Target

    2024-04-07_f279e7c3ffe12fa05f9d2272af342f15_ryuk

  • Size

    6.0MB

  • Sample

    240407-3mv2qsab64

  • MD5

    f279e7c3ffe12fa05f9d2272af342f15

  • SHA1

    3263d06ea5a59011d9dc19a24a05df0872322c47

  • SHA256

    b7e245fc19d71a5970363fde2bd8c7cc68444e8315b60b8816ddcc8559ec7fd2

  • SHA512

    fff02a604e0428659b697376fd6af3cc10f23934580753a76ef98f86cc09fabd2b855ea5b17b977fca0c66d35a7f9dcffcfe181df04adf0975dd75736f67c189

  • SSDEEP

    98304:h5u0O64Zx/nIq5j4EerYR4tCZdNh+mv5:0P47A4k1

Score
7/10

Malware Config

Targets

    • Target

      2024-04-07_f279e7c3ffe12fa05f9d2272af342f15_ryuk

    • Size

      6.0MB

    • MD5

      f279e7c3ffe12fa05f9d2272af342f15

    • SHA1

      3263d06ea5a59011d9dc19a24a05df0872322c47

    • SHA256

      b7e245fc19d71a5970363fde2bd8c7cc68444e8315b60b8816ddcc8559ec7fd2

    • SHA512

      fff02a604e0428659b697376fd6af3cc10f23934580753a76ef98f86cc09fabd2b855ea5b17b977fca0c66d35a7f9dcffcfe181df04adf0975dd75736f67c189

    • SSDEEP

      98304:h5u0O64Zx/nIq5j4EerYR4tCZdNh+mv5:0P47A4k1

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks