d8d9e03596ff347731bc14987e3d00976b8d84120a14bf769fc10ce53ee86c84 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-04-18...uk.exe

windows7-x64

5

2024-04-18...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-18_4d118bdbb6a7dbb2090169266288bea4_cobalt-strike_ryuk
Size

946KB
Sample

240418-zaangsfc51
MD5

4d118bdbb6a7dbb2090169266288bea4
SHA1

7c2cc8231cd3923de681ad55dee21b7ad9ca4c13
SHA256

d8d9e03596ff347731bc14987e3d00976b8d84120a14bf769fc10ce53ee86c84
SHA512

d9079228a672b5f6e1f784290af34eff1de4a01fdff59cf28b598479a5310be89e9714a110a2941c5866bee562936500f9bd141485a094952f758f8fd4c7c1f7
SSDEEP

24576:HTgnpwJ+RoTduSZpUR0GHrVQ1aW4mSOgv3isi:z0dIpAHrVQ1/fSNvi

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-04-18_4d118bdbb6a7dbb2090169266288bea4_cobalt-strike_ryuk.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-18_4d118bdbb6a7dbb2090169266288bea4_cobalt-strike_ryuk.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-18_4d118bdbb6a7dbb2090169266288bea4_cobalt-strike_ryuk
- Size
  
  946KB
- MD5
  
  4d118bdbb6a7dbb2090169266288bea4
- SHA1
  
  7c2cc8231cd3923de681ad55dee21b7ad9ca4c13
- SHA256
  
  d8d9e03596ff347731bc14987e3d00976b8d84120a14bf769fc10ce53ee86c84
- SHA512
  
  d9079228a672b5f6e1f784290af34eff1de4a01fdff59cf28b598479a5310be89e9714a110a2941c5866bee562936500f9bd141485a094952f758f8fd4c7c1f7
- SSDEEP
  
  24576:HTgnpwJ+RoTduSZpUR0GHrVQ1aW4mSOgv3isi:z0dIpAHrVQ1/fSNvi
Score

7^/10
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy