Overview

overview

7

Static

static

3

2024-05-28...uk.exe

windows7-x64

1

2024-05-28...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-28_8f8a3b9257337cf60e2c3f1b2b9e561c_ryuk

  • Size

    5.5MB

  • Sample

    240528-wxflgafh92

  • MD5

    8f8a3b9257337cf60e2c3f1b2b9e561c

  • SHA1

    2cb35852ed8e4421829930dbff1c4332eccf2872

  • SHA256

    bf0689d3cb62e23b46f2f5a6734ec2677195b8c71d1d5c2d313c81ac046c5cf4

  • SHA512

    d9bdd3234b5f1d5308871a396c293649b35e297d9e9343e019ac138081f817b2150931ae5d58b95e68c381c08e5896190dc8f876137d3aee3a287d65f1cf3df6

  • SSDEEP

    49152:4EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGf+:WAI5pAdV/n9tbnR1VgBVmP8

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-28_8f8a3b9257337cf60e2c3f1b2b9e561c_ryuk

    • Size

      5.5MB

    • MD5

      8f8a3b9257337cf60e2c3f1b2b9e561c

    • SHA1

      2cb35852ed8e4421829930dbff1c4332eccf2872

    • SHA256

      bf0689d3cb62e23b46f2f5a6734ec2677195b8c71d1d5c2d313c81ac046c5cf4

    • SHA512

      d9bdd3234b5f1d5308871a396c293649b35e297d9e9343e019ac138081f817b2150931ae5d58b95e68c381c08e5896190dc8f876137d3aee3a287d65f1cf3df6

    • SSDEEP

      49152:4EFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGf+:WAI5pAdV/n9tbnR1VgBVmP8

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks