4dcc1994acc6f52cd74a69264ecd22c8e662e781ec9cfc93b40b65dce5d56ffa | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-05-24...uk.exe

windows7-x64

1

2024-05-24...uk.exe

windows10-2004-x64

7

Sharing

General

Target

2024-05-24_ce2f7957fc56fa27d7a44e5fe38f8dd4_ryuk
Size

1.7MB
Sample

240524-t3vw8sce39
MD5

ce2f7957fc56fa27d7a44e5fe38f8dd4
SHA1

4268c2ceaa99040b00f658e511abd31ecad7986f
SHA256

4dcc1994acc6f52cd74a69264ecd22c8e662e781ec9cfc93b40b65dce5d56ffa
SHA512

fd5c1e7554e83fea12fc6d2f9751340b6be12fbb9c15ae942b7c203815b663137e3d16e70d4af56c58b9bfff6131254398f442beef1f95cca0e39310a66fe83e
SSDEEP

24576:m6V6VC/AyqGizWCaFbyZMdIuwe3zfIe7xmvH/:m6cbGizWCaFbuMdFrIe78vH/

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-24_ce2f7957fc56fa27d7a44e5fe38f8dd4_ryuk.exe

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-24_ce2f7957fc56fa27d7a44e5fe38f8dd4_ryuk.exe

Resource

win10v2004-20240426-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-24_ce2f7957fc56fa27d7a44e5fe38f8dd4_ryuk
- Size
  
  1.7MB
- MD5
  
  ce2f7957fc56fa27d7a44e5fe38f8dd4
- SHA1
  
  4268c2ceaa99040b00f658e511abd31ecad7986f
- SHA256
  
  4dcc1994acc6f52cd74a69264ecd22c8e662e781ec9cfc93b40b65dce5d56ffa
- SHA512
  
  fd5c1e7554e83fea12fc6d2f9751340b6be12fbb9c15ae942b7c203815b663137e3d16e70d4af56c58b9bfff6131254398f442beef1f95cca0e39310a66fe83e
- SSDEEP
  
  24576:m6V6VC/AyqGizWCaFbyZMdIuwe3zfIe7xmvH/:m6cbGizWCaFbuMdFrIe78vH/
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy