Overview

overview

7

Static

static

3

2024-05-28...uk.exe

windows7-x64

1

2024-05-28...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-28_e9a2e6f926a6e940d0d26a280dbf4758_ryuk

  • Size

    5.5MB

  • Sample

    240528-yanpnshc7s

  • MD5

    e9a2e6f926a6e940d0d26a280dbf4758

  • SHA1

    cab4d68335e0b952bf909667e22c41b85fb3e51f

  • SHA256

    96ab1d700f1ed6044ee6cb7698ea1ef2c98ada0423fedbb5af971c3900d79a41

  • SHA512

    37422ce008d01b63046a5f5e8fb3206c0602ff01bfcc7026cca648da1c40b9f09b39e8b92e88489795e5067afb24aedeb55e7b7934e120ff26784bb01508d1ef

  • SSDEEP

    49152:eEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:EAI5pAdVJn9tbnR1VgBVmNQWdO

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-28_e9a2e6f926a6e940d0d26a280dbf4758_ryuk

    • Size

      5.5MB

    • MD5

      e9a2e6f926a6e940d0d26a280dbf4758

    • SHA1

      cab4d68335e0b952bf909667e22c41b85fb3e51f

    • SHA256

      96ab1d700f1ed6044ee6cb7698ea1ef2c98ada0423fedbb5af971c3900d79a41

    • SHA512

      37422ce008d01b63046a5f5e8fb3206c0602ff01bfcc7026cca648da1c40b9f09b39e8b92e88489795e5067afb24aedeb55e7b7934e120ff26784bb01508d1ef

    • SSDEEP

      49152:eEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfx:EAI5pAdVJn9tbnR1VgBVmNQWdO

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks