Overview

overview

7

Static

static

3

2024-05-24...uk.exe

windows7-x64

1

2024-05-24...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-24_afa0874799d3c4b675ccceb98ee61726_ryuk

  • Size

    5.5MB

  • Sample

    240524-p2pllsdc9z

  • MD5

    afa0874799d3c4b675ccceb98ee61726

  • SHA1

    7e9a5587cd828aa9cdc2e418c2fc95bf89480b9d

  • SHA256

    6067a332132158917710f3a984b567adbb0670f16a26c1e6a33ee66d294d7ebb

  • SHA512

    bdecf042958ef07f285ce35cb32fa4214913ee680c6cf3948091671f7bf8c7f0fd0d2b33cbe0f88a64cfd14baf53187fd42ef763afe7109c487ad5825916b7b7

  • SSDEEP

    49152:bEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf4:HAI5pAdVJn9tbnR1VgBVmQpAhQ1CNvi

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-24_afa0874799d3c4b675ccceb98ee61726_ryuk

    • Size

      5.5MB

    • MD5

      afa0874799d3c4b675ccceb98ee61726

    • SHA1

      7e9a5587cd828aa9cdc2e418c2fc95bf89480b9d

    • SHA256

      6067a332132158917710f3a984b567adbb0670f16a26c1e6a33ee66d294d7ebb

    • SHA512

      bdecf042958ef07f285ce35cb32fa4214913ee680c6cf3948091671f7bf8c7f0fd0d2b33cbe0f88a64cfd14baf53187fd42ef763afe7109c487ad5825916b7b7

    • SSDEEP

      49152:bEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf4:HAI5pAdVJn9tbnR1VgBVmQpAhQ1CNvi

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks