Overview

overview

7

Static

static

3

2024-04-29...uk.exe

windows7-x64

7

2024-04-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-29_79a6516423680a7d470bc839b30a6b79_ryuk

  • Size

    14.0MB

  • Sample

    240429-w2mwcahd37

  • MD5

    79a6516423680a7d470bc839b30a6b79

  • SHA1

    dc8ccd39efb34ab9984c3f333bdd1bcdf3e073ec

  • SHA256

    5ec2276c87a5e73a8e82f31b04b68bc180955b5916770dd755381440bd04eb81

  • SHA512

    39875d0ed4314f128026fbec3b5871b536240f685c1aed4c4999654e8855a87234d40a8fbe3e567b30e0d7d42452791af80dc739179fb9c9c5a5cae773af3fc7

  • SSDEEP

    98304:s8fjrjQSQkiSfGMb2KU0fxdibpFl5sD5NDi1iKZb:s8rjYSU0JP/k

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-29_79a6516423680a7d470bc839b30a6b79_ryuk

    • Size

      14.0MB

    • MD5

      79a6516423680a7d470bc839b30a6b79

    • SHA1

      dc8ccd39efb34ab9984c3f333bdd1bcdf3e073ec

    • SHA256

      5ec2276c87a5e73a8e82f31b04b68bc180955b5916770dd755381440bd04eb81

    • SHA512

      39875d0ed4314f128026fbec3b5871b536240f685c1aed4c4999654e8855a87234d40a8fbe3e567b30e0d7d42452791af80dc739179fb9c9c5a5cae773af3fc7

    • SSDEEP

      98304:s8fjrjQSQkiSfGMb2KU0fxdibpFl5sD5NDi1iKZb:s8rjYSU0JP/k

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks