Overview

overview

7

Static

static

3

2024-04-18...uk.exe

windows7-x64

1

2024-04-18...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-18_4b8908f934d9126c05edb10954f2938b_ryuk

  • Size

    5.5MB

  • Sample

    240419-aehr8abg7s

  • MD5

    4b8908f934d9126c05edb10954f2938b

  • SHA1

    18d9f54d202c5432fbd20857c187448878a5fec4

  • SHA256

    df1c845900d9e231597afe37576001a4841f8b4dc7fff164fdc6385630850bf4

  • SHA512

    95bff3e835b26ec28ad3b57583aabe638e6dade82a539301fea4e8744a572d9ca18d7e827774e3a08443005770a117fa4e21e708913363086748a927566f413f

  • SSDEEP

    49152:xEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGff:1AI5pAdV9n9tbnR1VgBVmI1Ms

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-18_4b8908f934d9126c05edb10954f2938b_ryuk

    • Size

      5.5MB

    • MD5

      4b8908f934d9126c05edb10954f2938b

    • SHA1

      18d9f54d202c5432fbd20857c187448878a5fec4

    • SHA256

      df1c845900d9e231597afe37576001a4841f8b4dc7fff164fdc6385630850bf4

    • SHA512

      95bff3e835b26ec28ad3b57583aabe638e6dade82a539301fea4e8744a572d9ca18d7e827774e3a08443005770a117fa4e21e708913363086748a927566f413f

    • SSDEEP

      49152:xEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGff:1AI5pAdV9n9tbnR1VgBVmI1Ms

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks