General

  • Target

    2024-05-27_2aa28d25d747a12330c753887294a979_ryuk

  • Size

    5.5MB

  • Sample

    240527-rrslmagf34

  • MD5

    2aa28d25d747a12330c753887294a979

  • SHA1

    e0e37e1f6d6b683c9a7e6e805943be1a2a3d9c06

  • SHA256

    580f25cc5f204caec104e807bfc9c3d154b1a46ae6d1cbd8e786a966114c70fa

  • SHA512

    fb32e44b20a7770f35bfe977b023da7485a9ecd12ecb4dc83075a25060ad97b2f8e14e68002813f555791a75d11331818839f91095da2480c2f0c592e4386482

  • SSDEEP

    49152:IEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf4:GAI5pAdVJn9tbnR1VgBVmveD5s0JXP

Score
7/10

Malware Config

Targets

    • Target

      2024-05-27_2aa28d25d747a12330c753887294a979_ryuk

    • Size

      5.5MB

    • MD5

      2aa28d25d747a12330c753887294a979

    • SHA1

      e0e37e1f6d6b683c9a7e6e805943be1a2a3d9c06

    • SHA256

      580f25cc5f204caec104e807bfc9c3d154b1a46ae6d1cbd8e786a966114c70fa

    • SHA512

      fb32e44b20a7770f35bfe977b023da7485a9ecd12ecb4dc83075a25060ad97b2f8e14e68002813f555791a75d11331818839f91095da2480c2f0c592e4386482

    • SSDEEP

      49152:IEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf4:GAI5pAdVJn9tbnR1VgBVmveD5s0JXP

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks