Overview

overview

7

Static

static

3

2024-04-28...uk.exe

windows7-x64

1

2024-04-28...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_c456d943fb4806279b3e9fc34f642f2c_ryuk

  • Size

    5.5MB

  • Sample

    240428-nyt69afa48

  • MD5

    c456d943fb4806279b3e9fc34f642f2c

  • SHA1

    441c5a6656df63b40f32c9bedde8f4fc21129ae4

  • SHA256

    b82cd8b42398dfea081f8016cd1a75ab8eb50a4cf422bb0bcba46735749f0a38

  • SHA512

    99189a6c0b8d88187a0daa2b314117b6964a70a03e1cb305935659005563855418d36b15c81a3e5d311394a46fc0502efb582d5b0aea3a18c5c255175c284768

  • SSDEEP

    98304:fAI5pAdV9n9tbnR1VgBVmC70uMhSBrkNq:fAsC97XYZIoQ

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-28_c456d943fb4806279b3e9fc34f642f2c_ryuk

    • Size

      5.5MB

    • MD5

      c456d943fb4806279b3e9fc34f642f2c

    • SHA1

      441c5a6656df63b40f32c9bedde8f4fc21129ae4

    • SHA256

      b82cd8b42398dfea081f8016cd1a75ab8eb50a4cf422bb0bcba46735749f0a38

    • SHA512

      99189a6c0b8d88187a0daa2b314117b6964a70a03e1cb305935659005563855418d36b15c81a3e5d311394a46fc0502efb582d5b0aea3a18c5c255175c284768

    • SSDEEP

      98304:fAI5pAdV9n9tbnR1VgBVmC70uMhSBrkNq:fAsC97XYZIoQ

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks