General

  • Target

    2024-05-24_d19d06c9139ba35750b8bffc40ead61d_ryuk

  • Size

    5.5MB

  • Sample

    240524-wqfmwsec2v

  • MD5

    d19d06c9139ba35750b8bffc40ead61d

  • SHA1

    77b8de7964f20050ccc9d6f157682ad7b06c5d57

  • SHA256

    6f2bad13b515ccce7f9ac39f8ed60918e0dec58a47cabec49d5350c5c90ac057

  • SHA512

    372dea6d2c6eed2a2932bef8c210faa722584a22d24b62e3d91d858aff05f2252714baa7c28000b93fbc6359e03ee1658d0b423a6e3ce81afdc79d0dfc901417

  • SSDEEP

    49152:jEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:/AI5pAdVJn9tbnR1VgBVm/69CEN6rV

Score
7/10

Malware Config

Targets

    • Target

      2024-05-24_d19d06c9139ba35750b8bffc40ead61d_ryuk

    • Size

      5.5MB

    • MD5

      d19d06c9139ba35750b8bffc40ead61d

    • SHA1

      77b8de7964f20050ccc9d6f157682ad7b06c5d57

    • SHA256

      6f2bad13b515ccce7f9ac39f8ed60918e0dec58a47cabec49d5350c5c90ac057

    • SHA512

      372dea6d2c6eed2a2932bef8c210faa722584a22d24b62e3d91d858aff05f2252714baa7c28000b93fbc6359e03ee1658d0b423a6e3ce81afdc79d0dfc901417

    • SSDEEP

      49152:jEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:/AI5pAdVJn9tbnR1VgBVm/69CEN6rV

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v13

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

System Information Discovery

4
T1082

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

Collection

Data from Local System

1
T1005

Tasks