30b4336e4b1f98d56916d90f38d844d7ddc116f08e9ae3e0439f1c70f9e3b5fe | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-04-22...uk.exe

windows10-2004-x64

7

Sharing

General

Target

2024-04-22_cc2c6b213311b9bb2b3c8c8c2b162cf5_ryuk
Size

4.6MB
Sample

240422-d9ektsfc9x
MD5

cc2c6b213311b9bb2b3c8c8c2b162cf5
SHA1

f4f8c13dd48f337932479591a5707339daa2a9d3
SHA256

30b4336e4b1f98d56916d90f38d844d7ddc116f08e9ae3e0439f1c70f9e3b5fe
SHA512

b3add67cbf9528ede32a0fa068a8f0964a81b480ade16d8a3aa4465d46eb74ae9747caada1eb38c54ba18779935ddaffc0230c1b6d09b2c6e93c8e782a2cda09
SSDEEP

49152:XrB927JqNYVZ5bW2QNh71gfUofmlh5Evno2Hr9M/EN/qrlq3S+okgvTTl87ePjLO:7jr/LhgfUJcta/Cw+MNeMX7hPu

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-04-22_cc2c6b213311b9bb2b3c8c8c2b162cf5_ryuk.exe

Resource

win10v2004-20240412-en

spyware stealer

windows10-2004-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-22_cc2c6b213311b9bb2b3c8c8c2b162cf5_ryuk
- Size
  
  4.6MB
- MD5
  
  cc2c6b213311b9bb2b3c8c8c2b162cf5
- SHA1
  
  f4f8c13dd48f337932479591a5707339daa2a9d3
- SHA256
  
  30b4336e4b1f98d56916d90f38d844d7ddc116f08e9ae3e0439f1c70f9e3b5fe
- SHA512
  
  b3add67cbf9528ede32a0fa068a8f0964a81b480ade16d8a3aa4465d46eb74ae9747caada1eb38c54ba18779935ddaffc0230c1b6d09b2c6e93c8e782a2cda09
- SSDEEP
  
  49152:XrB927JqNYVZ5bW2QNh71gfUofmlh5Evno2Hr9M/EN/qrlq3S+okgvTTl87ePjLO:7jr/LhgfUJcta/Cw+MNeMX7hPu
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy