Overview

overview

7

Static

static

3

2024-04-18...uk.exe

windows7-x64

1

2024-04-18...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-18_94b6eb01d2c3f2520c285f08395ba2b8_ryuk

  • Size

    5.5MB

  • Sample

    240418-131aaagb85

  • MD5

    94b6eb01d2c3f2520c285f08395ba2b8

  • SHA1

    327ff674de4079090ea7da6a2df5afcb49406689

  • SHA256

    ee118630664e4ab4cea302a835f6f9780a4f43b76baf5e07986b9365fa02f898

  • SHA512

    c2dd0265b55fb72ca0744e0c3934e08bde59a96f50845619934e9de927ce1c1b537a786c44f3ae9196b7c18f95beea93ac09e750e1b8db2c6f8aa3a33d534afe

  • SSDEEP

    49152:HEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfb:TAI5pAdVJn9tbnR1VgBVm2D527BWG

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-18_94b6eb01d2c3f2520c285f08395ba2b8_ryuk

    • Size

      5.5MB

    • MD5

      94b6eb01d2c3f2520c285f08395ba2b8

    • SHA1

      327ff674de4079090ea7da6a2df5afcb49406689

    • SHA256

      ee118630664e4ab4cea302a835f6f9780a4f43b76baf5e07986b9365fa02f898

    • SHA512

      c2dd0265b55fb72ca0744e0c3934e08bde59a96f50845619934e9de927ce1c1b537a786c44f3ae9196b7c18f95beea93ac09e750e1b8db2c6f8aa3a33d534afe

    • SSDEEP

      49152:HEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfb:TAI5pAdVJn9tbnR1VgBVm2D527BWG

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks