General

  • Target

    2024-05-22_f0b8ab5964cb0ac7af3195fdd3a5e8c9_ryuk

  • Size

    5.5MB

  • Sample

    240522-2xft5acc2t

  • MD5

    f0b8ab5964cb0ac7af3195fdd3a5e8c9

  • SHA1

    3cd41989c5fceb59dc5c7e971d54eb4bd801d5ce

  • SHA256

    d8ff55b56c5b2efd3ab9831035ea86a754eacaa349981de5f83e25fc5646cb49

  • SHA512

    eec88b10069c005bac29ad724cb9b70c27913fce143c4bcfa07b8614acc0c61b138a285a2585dfa6de1c3ebb92429e90fc50e9894da999ae1c79ddfe46bce872

  • SSDEEP

    49152:5EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfW:tAI5pAdVJn9tbnR1VgBVm51Ms

Score
7/10

Malware Config

Targets

    • Target

      2024-05-22_f0b8ab5964cb0ac7af3195fdd3a5e8c9_ryuk

    • Size

      5.5MB

    • MD5

      f0b8ab5964cb0ac7af3195fdd3a5e8c9

    • SHA1

      3cd41989c5fceb59dc5c7e971d54eb4bd801d5ce

    • SHA256

      d8ff55b56c5b2efd3ab9831035ea86a754eacaa349981de5f83e25fc5646cb49

    • SHA512

      eec88b10069c005bac29ad724cb9b70c27913fce143c4bcfa07b8614acc0c61b138a285a2585dfa6de1c3ebb92429e90fc50e9894da999ae1c79ddfe46bce872

    • SSDEEP

      49152:5EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfW:tAI5pAdVJn9tbnR1VgBVm51Ms

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks