General

  • Target

    2024-04-07_6ee7e7514394acbfbd535f8056053b7c_ryuk

  • Size

    1.9MB

  • Sample

    240407-v5sqbsac82

  • MD5

    6ee7e7514394acbfbd535f8056053b7c

  • SHA1

    6b58ccafecd5478c6317b42b903df1fb2543c4fe

  • SHA256

    31493c1bdf43f6a275254ad896c9a78f6cfa3960e9d193eda2773f0453022876

  • SHA512

    355a8d459753e54259f35acca42423bcc2f5fa132d892973f15937258550860d6324ce1f6630b49d99b94db1ded576f394df71b8cd29988a22528de3da05c1c2

  • SSDEEP

    49152:EVOyh+50zyxcksDM2jh3BqS7YtGL/Als:Qho0zk6MMQS7kGLws

Score
7/10

Malware Config

Targets

    • Target

      2024-04-07_6ee7e7514394acbfbd535f8056053b7c_ryuk

    • Size

      1.9MB

    • MD5

      6ee7e7514394acbfbd535f8056053b7c

    • SHA1

      6b58ccafecd5478c6317b42b903df1fb2543c4fe

    • SHA256

      31493c1bdf43f6a275254ad896c9a78f6cfa3960e9d193eda2773f0453022876

    • SHA512

      355a8d459753e54259f35acca42423bcc2f5fa132d892973f15937258550860d6324ce1f6630b49d99b94db1ded576f394df71b8cd29988a22528de3da05c1c2

    • SSDEEP

      49152:EVOyh+50zyxcksDM2jh3BqS7YtGL/Als:Qho0zk6MMQS7kGLws

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks