Overview

overview

7

Static

static

3

2024-05-21...uk.exe

windows7-x64

1

2024-05-21...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-21_4e6cc79922fa048afafb4d037b2e588f_ryuk

  • Size

    5.5MB

  • Sample

    240521-cwf13aeh75

  • MD5

    4e6cc79922fa048afafb4d037b2e588f

  • SHA1

    010d62ab0e83c85a1b5695a0b9a5c018d330e691

  • SHA256

    2d5a784853685bdd48a799d9d5238bdb8d8a99826cbc316397e317a735d5e2d8

  • SHA512

    e5bf335ea4941d99b0ff088195e0e81d1214e9b5ba78d49f20a5d23ec6628e98ce72d1d7b3caf6545c48b47c7751f187cc28b1e3ccb2501b13c9143f939f46d9

  • SSDEEP

    49152:hEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfQ:FAI5pAdVJn9tbnR1VgBVm6nlS

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-21_4e6cc79922fa048afafb4d037b2e588f_ryuk

    • Size

      5.5MB

    • MD5

      4e6cc79922fa048afafb4d037b2e588f

    • SHA1

      010d62ab0e83c85a1b5695a0b9a5c018d330e691

    • SHA256

      2d5a784853685bdd48a799d9d5238bdb8d8a99826cbc316397e317a735d5e2d8

    • SHA512

      e5bf335ea4941d99b0ff088195e0e81d1214e9b5ba78d49f20a5d23ec6628e98ce72d1d7b3caf6545c48b47c7751f187cc28b1e3ccb2501b13c9143f939f46d9

    • SSDEEP

      49152:hEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfQ:FAI5pAdVJn9tbnR1VgBVm6nlS

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks