Overview

overview

7

Static

static

3

2024-05-22...uk.exe

windows7-x64

1

2024-05-22...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_816da6209ea24204d7fbd83ebe0b5c4f_ryuk

  • Size

    5.5MB

  • Sample

    240522-zw52hsgg28

  • MD5

    816da6209ea24204d7fbd83ebe0b5c4f

  • SHA1

    85f2b8b4d815b07066c5cb22871e1796f3cbd99e

  • SHA256

    ec8f30a4a05a4f0a74530f8d72336c8341ee545134535851231484535cb80cd0

  • SHA512

    ad6c0e68af65aa82a514234e98bf322a2a2903316a60340d1b2c13a9c4bef4997263b324175413e0d36c0b16121d3af3311a49275896c1749d389a038be839f7

  • SSDEEP

    49152:sEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfQ:aAI5pAdVJn9tbnR1VgBVmOPHn3

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-22_816da6209ea24204d7fbd83ebe0b5c4f_ryuk

    • Size

      5.5MB

    • MD5

      816da6209ea24204d7fbd83ebe0b5c4f

    • SHA1

      85f2b8b4d815b07066c5cb22871e1796f3cbd99e

    • SHA256

      ec8f30a4a05a4f0a74530f8d72336c8341ee545134535851231484535cb80cd0

    • SHA512

      ad6c0e68af65aa82a514234e98bf322a2a2903316a60340d1b2c13a9c4bef4997263b324175413e0d36c0b16121d3af3311a49275896c1749d389a038be839f7

    • SSDEEP

      49152:sEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfQ:aAI5pAdVJn9tbnR1VgBVmOPHn3

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks