Overview

overview

7

Static

static

3

2024-04-29...uk.exe

windows7-x64

7

2024-04-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-29_bf3f882923928013556f8fe5dd7c348b_ryuk

  • Size

    7.2MB

  • Sample

    240429-wb9x7agh6z

  • MD5

    bf3f882923928013556f8fe5dd7c348b

  • SHA1

    56c82189ffa0bfde3bba7bc2362d759b2a8c38a7

  • SHA256

    a25776042ce5763a7d18f3fce704bc9bc8d0dfc8d9fdaaa89ec71b7af2acdc85

  • SHA512

    5305dbd0c45a29a3d3489a3d7f9b5a6b622bc499eb9cf2199c977520dd7161f7733081113e9a50f1e2fe52dba338fc517821125230342c243e16262e1cbf8471

  • SSDEEP

    98304:Pg3JYQzhg4dQHPR+TWitUBHURSrn2vTtusrb:o3JYQzO48C5aB0Rs2Z

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-29_bf3f882923928013556f8fe5dd7c348b_ryuk

    • Size

      7.2MB

    • MD5

      bf3f882923928013556f8fe5dd7c348b

    • SHA1

      56c82189ffa0bfde3bba7bc2362d759b2a8c38a7

    • SHA256

      a25776042ce5763a7d18f3fce704bc9bc8d0dfc8d9fdaaa89ec71b7af2acdc85

    • SHA512

      5305dbd0c45a29a3d3489a3d7f9b5a6b622bc499eb9cf2199c977520dd7161f7733081113e9a50f1e2fe52dba338fc517821125230342c243e16262e1cbf8471

    • SSDEEP

      98304:Pg3JYQzhg4dQHPR+TWitUBHURSrn2vTtusrb:o3JYQzO48C5aB0Rs2Z

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks