Overview

overview

7

Static

static

3

2024-04-24...uk.exe

windows7-x64

1

2024-04-24...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-24_b99c94c271cf695aa22b51e144b12710_ryuk

  • Size

    5.5MB

  • Sample

    240424-pvjrsaaa5y

  • MD5

    b99c94c271cf695aa22b51e144b12710

  • SHA1

    f0a23c1c0e4b5bfab5961ba21a12f073c41b9156

  • SHA256

    829c2baa152cd42e2af6da6c5dcd55d11eea3aea85a372e7232c0839e236749f

  • SHA512

    3878f1428c8e250354fc7ffe5a99a1eccc76705d8ad828cbfc0cddca3738ff7f28056ff7154bc5cb6bcd0de9d1c2e3ba266b7fa8756b652316d46508504bfff1

  • SSDEEP

    49152:VEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf8:JAI5pAdVJn9tbnR1VgBVmuJ3rL

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-24_b99c94c271cf695aa22b51e144b12710_ryuk

    • Size

      5.5MB

    • MD5

      b99c94c271cf695aa22b51e144b12710

    • SHA1

      f0a23c1c0e4b5bfab5961ba21a12f073c41b9156

    • SHA256

      829c2baa152cd42e2af6da6c5dcd55d11eea3aea85a372e7232c0839e236749f

    • SHA512

      3878f1428c8e250354fc7ffe5a99a1eccc76705d8ad828cbfc0cddca3738ff7f28056ff7154bc5cb6bcd0de9d1c2e3ba266b7fa8756b652316d46508504bfff1

    • SSDEEP

      49152:VEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf8:JAI5pAdVJn9tbnR1VgBVmuJ3rL

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks