Overview

overview

7

Static

static

3

2024-05-29...uk.exe

windows7-x64

1

2024-05-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-29_1cf1b8938bf9b07f55924ad831ba41ff_ryuk

  • Size

    5.5MB

  • Sample

    240529-yhz3nsff3t

  • MD5

    1cf1b8938bf9b07f55924ad831ba41ff

  • SHA1

    58d12e01bfd08c225e4d2339f2e3a57f3bf0e238

  • SHA256

    da1d27d93bcdaa8d83a09560cf97b5bbce67207a0615e37d3aa4c399aee90649

  • SHA512

    67b7f2ba743cbc31ad683d5598ac5c7d096c3a707813af7f65d660e070b77caf27bec3778be78f4cd411584aa7f0af661c6d591774e428ec0b286a5cf2b60918

  • SSDEEP

    49152:XEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf/:DAI5pAdVJn9tbnR1VgBVm569CEN6rV

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-29_1cf1b8938bf9b07f55924ad831ba41ff_ryuk

    • Size

      5.5MB

    • MD5

      1cf1b8938bf9b07f55924ad831ba41ff

    • SHA1

      58d12e01bfd08c225e4d2339f2e3a57f3bf0e238

    • SHA256

      da1d27d93bcdaa8d83a09560cf97b5bbce67207a0615e37d3aa4c399aee90649

    • SHA512

      67b7f2ba743cbc31ad683d5598ac5c7d096c3a707813af7f65d660e070b77caf27bec3778be78f4cd411584aa7f0af661c6d591774e428ec0b286a5cf2b60918

    • SSDEEP

      49152:XEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf/:DAI5pAdVJn9tbnR1VgBVm569CEN6rV

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks