Overview

overview

7

Static

static

3

2024-05-30...uk.exe

windows7-x64

1

2024-05-30...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-30_d4ff7075d64894aaf09540a547e71243_ryuk

  • Size

    5.5MB

  • Sample

    240530-3a1rfsdg6s

  • MD5

    d4ff7075d64894aaf09540a547e71243

  • SHA1

    fd9a3ce76f4c92f6d2a3cb8184f7d3bd18ee5d05

  • SHA256

    142a55099ec9c550c8bbf53840806cde82c7a83e2001463faa5681939a0ef596

  • SHA512

    4e1362702277291c44ae2c8fdd80554cf0b962516d74a3374d1364a38c9fb76392e68b71192b3d27fff1c81f44d253c5cbf94cb08a8919caa310cf2f77d7eb9b

  • SSDEEP

    49152:OEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfm:UAI5pAdVJn9tbnR1VgBVmQ/iyB

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-30_d4ff7075d64894aaf09540a547e71243_ryuk

    • Size

      5.5MB

    • MD5

      d4ff7075d64894aaf09540a547e71243

    • SHA1

      fd9a3ce76f4c92f6d2a3cb8184f7d3bd18ee5d05

    • SHA256

      142a55099ec9c550c8bbf53840806cde82c7a83e2001463faa5681939a0ef596

    • SHA512

      4e1362702277291c44ae2c8fdd80554cf0b962516d74a3374d1364a38c9fb76392e68b71192b3d27fff1c81f44d253c5cbf94cb08a8919caa310cf2f77d7eb9b

    • SSDEEP

      49152:OEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfm:UAI5pAdVJn9tbnR1VgBVmQ/iyB

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks