General

  • Target

    2024-04-08_ac926577037a215f7786d1403a4ef64d_ryuk

  • Size

    1.8MB

  • Sample

    240408-bvrkqscg44

  • MD5

    ac926577037a215f7786d1403a4ef64d

  • SHA1

    05107e4c4c1cc8daf05be37f2926b53574141a78

  • SHA256

    ce5e072f0f0af18b442efde4d3baf61fa25f27117a9c2ad5a0252dc584bdd833

  • SHA512

    af0ff24d9b10798d5222a20268fec652320ca94c7b7a09b9c19a00421bd73646f2d798ee5cc68a8e775f0ddad65647bce30572826e7372ed8777a1bcd6bfbec4

  • SSDEEP

    49152:8KX0DzOswXGfymHQlIuQqMdFrIe78vH/:eXNOGfjqI1TjYvH

Score
7/10

Malware Config

Targets

    • Target

      2024-04-08_ac926577037a215f7786d1403a4ef64d_ryuk

    • Size

      1.8MB

    • MD5

      ac926577037a215f7786d1403a4ef64d

    • SHA1

      05107e4c4c1cc8daf05be37f2926b53574141a78

    • SHA256

      ce5e072f0f0af18b442efde4d3baf61fa25f27117a9c2ad5a0252dc584bdd833

    • SHA512

      af0ff24d9b10798d5222a20268fec652320ca94c7b7a09b9c19a00421bd73646f2d798ee5cc68a8e775f0ddad65647bce30572826e7372ed8777a1bcd6bfbec4

    • SSDEEP

      49152:8KX0DzOswXGfymHQlIuQqMdFrIe78vH/:eXNOGfjqI1TjYvH

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks