Overview

overview

7

Static

static

3

2024-04-22...uk.exe

windows7-x64

1

2024-04-22...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-22_0f20b6bdf8560424a66b4a23fdfc7f65_ryuk

  • Size

    1.7MB

  • Sample

    240422-mz8klaae81

  • MD5

    0f20b6bdf8560424a66b4a23fdfc7f65

  • SHA1

    802294fef1f6ca341a4ab9ce7ebb85fbe3a87294

  • SHA256

    c15527b09f1c21112dc4d801bc17c2a568929ea530bd2a9159dcc007a8d84bd5

  • SHA512

    9d9e17b1284f0aaa195a19dd763cc309eb7c57f650495335dd86da3aa8475fe7095fd2dd6db4025c32bd98aa4a6b4ca236724fa5ec4bfb38a718c9dc4a914ba1

  • SSDEEP

    24576:6gtHU0FjpVPt7AeUVIGGUZhRxHh2W4GKSkQ/7Gb8NLEbeZ:6gtHUujpj7AewZdZhRdhEokQ/qoLEw

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-22_0f20b6bdf8560424a66b4a23fdfc7f65_ryuk

    • Size

      1.7MB

    • MD5

      0f20b6bdf8560424a66b4a23fdfc7f65

    • SHA1

      802294fef1f6ca341a4ab9ce7ebb85fbe3a87294

    • SHA256

      c15527b09f1c21112dc4d801bc17c2a568929ea530bd2a9159dcc007a8d84bd5

    • SHA512

      9d9e17b1284f0aaa195a19dd763cc309eb7c57f650495335dd86da3aa8475fe7095fd2dd6db4025c32bd98aa4a6b4ca236724fa5ec4bfb38a718c9dc4a914ba1

    • SSDEEP

      24576:6gtHU0FjpVPt7AeUVIGGUZhRxHh2W4GKSkQ/7Gb8NLEbeZ:6gtHUujpj7AewZdZhRdhEokQ/qoLEw

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks