Overview

overview

7

Static

static

3

2024-05-24...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-24_d221a9c3c2673ade0513f74372e8e9a5_ryuk

  • Size

    1.9MB

  • Sample

    240524-qrejbsff71

  • MD5

    d221a9c3c2673ade0513f74372e8e9a5

  • SHA1

    0e8b099f218c4b813494ce8d38199fedf712a5d2

  • SHA256

    a93786b8c97dec7b647982c46aaea11c23c92a61acdac97f36d39090a780739a

  • SHA512

    7910097d2da74e16e970ed002b225003629299f32747a417b77f2c15ed48e6d05c4aa1f978c76a5aa94b2006f67d9b51e75e84ef9fa928a5357e7c3d8b81142f

  • SSDEEP

    24576:s78r8FfC3332nUnCdAaKuSRnOO23Cawqol2qDl9BL7FKyr7sBWbqreghLdSxFY:s/fQ337CGa6R2yjl24ToynwN/Fo

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-24_d221a9c3c2673ade0513f74372e8e9a5_ryuk

    • Size

      1.9MB

    • MD5

      d221a9c3c2673ade0513f74372e8e9a5

    • SHA1

      0e8b099f218c4b813494ce8d38199fedf712a5d2

    • SHA256

      a93786b8c97dec7b647982c46aaea11c23c92a61acdac97f36d39090a780739a

    • SHA512

      7910097d2da74e16e970ed002b225003629299f32747a417b77f2c15ed48e6d05c4aa1f978c76a5aa94b2006f67d9b51e75e84ef9fa928a5357e7c3d8b81142f

    • SSDEEP

      24576:s78r8FfC3332nUnCdAaKuSRnOO23Cawqol2qDl9BL7FKyr7sBWbqreghLdSxFY:s/fQ337CGa6R2yjl24ToynwN/Fo

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks