General

  • Target

    2024-05-24_91cecf25f81024ac14405502901baf51_ryuk

  • Size

    5.5MB

  • Sample

    240524-wh5xtaed24

  • MD5

    91cecf25f81024ac14405502901baf51

  • SHA1

    9010679783767d17ffc8b48e1ee405ea534c4bed

  • SHA256

    90f5d5aaf1aeb2c0d46451e2495ace667932b89427d8d5e47b1fc44a1aebafd5

  • SHA512

    586a455cd3f738c5f291b3f0439534cf88b77b59d4ed2b1167626b4e87d9565f10ba4209202852295694c66caa1f9cd2897459ed4b68240d4ce4b2a9bd5bacfb

  • SSDEEP

    49152:gEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGfn:uAI5pAdV9n9tbnR1VgBVmMC17DVqFJU

Score
7/10

Malware Config

Targets

    • Target

      2024-05-24_91cecf25f81024ac14405502901baf51_ryuk

    • Size

      5.5MB

    • MD5

      91cecf25f81024ac14405502901baf51

    • SHA1

      9010679783767d17ffc8b48e1ee405ea534c4bed

    • SHA256

      90f5d5aaf1aeb2c0d46451e2495ace667932b89427d8d5e47b1fc44a1aebafd5

    • SHA512

      586a455cd3f738c5f291b3f0439534cf88b77b59d4ed2b1167626b4e87d9565f10ba4209202852295694c66caa1f9cd2897459ed4b68240d4ce4b2a9bd5bacfb

    • SSDEEP

      49152:gEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1bn9tJEUxDG0BYYrLA50IHLGfn:uAI5pAdV9n9tbnR1VgBVmMC17DVqFJU

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v13

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

System Information Discovery

4
T1082

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

Collection

Data from Local System

1
T1005

Tasks