Overview

overview

7

Static

static

3

2024-05-17...uk.exe

windows7-x64

1

2024-05-17...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-17_8b1f5988672d195ed2c04d3d0f09d6a3_ryuk

  • Size

    5.5MB

  • Sample

    240517-lftfwsca63

  • MD5

    8b1f5988672d195ed2c04d3d0f09d6a3

  • SHA1

    107a4820b4feec1fbf78012e63e4dff48ba4d590

  • SHA256

    c0895632641b320b138c05f5fe6f4c15023638c0d7e7128be1d3ba9a4f45aaeb

  • SHA512

    a8c65df448a5e181b6592e56d2e7ce4641ed843ce96d35915696071040a49d68de8297824ad4ff97a9cf31f4f279636ced7b0036accb97c2c1c091ffe045bc57

  • SSDEEP

    49152:fEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:bAI5pAdVJn9tbnR1VgBVm5XvYCp3nyG

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-17_8b1f5988672d195ed2c04d3d0f09d6a3_ryuk

    • Size

      5.5MB

    • MD5

      8b1f5988672d195ed2c04d3d0f09d6a3

    • SHA1

      107a4820b4feec1fbf78012e63e4dff48ba4d590

    • SHA256

      c0895632641b320b138c05f5fe6f4c15023638c0d7e7128be1d3ba9a4f45aaeb

    • SHA512

      a8c65df448a5e181b6592e56d2e7ce4641ed843ce96d35915696071040a49d68de8297824ad4ff97a9cf31f4f279636ced7b0036accb97c2c1c091ffe045bc57

    • SSDEEP

      49152:fEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:bAI5pAdVJn9tbnR1VgBVm5XvYCp3nyG

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks