General

  • Target

    2024-04-28_adf535d61be26bfd352be69d08e03e4d_ryuk

  • Size

    2.2MB

  • Sample

    240428-yevnsafd82

  • MD5

    adf535d61be26bfd352be69d08e03e4d

  • SHA1

    a8d74e4fc951ace1f58a30c563dc3d690c836128

  • SHA256

    a5822bfe5219658b36ede63277040ef0b81139e572981ffc10dd302c5eda9d65

  • SHA512

    553aa6055cf24ee119c0befe5907f5252e361e8a7c12463dd3e0fb127ad4b4135773f0f5e0e51484c899200f60b7b2674b3a68cea40e393a61355a6be8789a45

  • SSDEEP

    49152:IOOh3aN4kuLbegmtGpgDUYmvFur31yAipQCtXxc0H:aU4ku/ctXU7dG1yfpVBlH

Score
7/10

Malware Config

Targets

    • Target

      2024-04-28_adf535d61be26bfd352be69d08e03e4d_ryuk

    • Size

      2.2MB

    • MD5

      adf535d61be26bfd352be69d08e03e4d

    • SHA1

      a8d74e4fc951ace1f58a30c563dc3d690c836128

    • SHA256

      a5822bfe5219658b36ede63277040ef0b81139e572981ffc10dd302c5eda9d65

    • SHA512

      553aa6055cf24ee119c0befe5907f5252e361e8a7c12463dd3e0fb127ad4b4135773f0f5e0e51484c899200f60b7b2674b3a68cea40e393a61355a6be8789a45

    • SSDEEP

      49152:IOOh3aN4kuLbegmtGpgDUYmvFur31yAipQCtXxc0H:aU4ku/ctXU7dG1yfpVBlH

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks