General

  • Target

    2024-05-30_5c61ddcc8f4833ffe1e9d38d372e8d37_ryuk

  • Size

    2.2MB

  • Sample

    240530-rfm7rsbb6t

  • MD5

    5c61ddcc8f4833ffe1e9d38d372e8d37

  • SHA1

    05ef2f4e333c56852abc6f353c90e103f1ee03ad

  • SHA256

    4b7bfa5a4fd36955e97d87ed28f0aa310d0a12b33e18839b52f7099e44f76e8c

  • SHA512

    b8a8ec4203aa5f358afbecd810aa86730c2b3ef893e199ce82ba81f9f39e48ea72837895c73717d87030ed32e98125702c1989cff971213f4a0dcaa1815a0dcf

  • SSDEEP

    49152:7OOh3aN4kuLbegmtGPXvYMLprznyDSga9:LU4ku/ctwXvYCp3nyG

Score
7/10

Malware Config

Targets

    • Target

      2024-05-30_5c61ddcc8f4833ffe1e9d38d372e8d37_ryuk

    • Size

      2.2MB

    • MD5

      5c61ddcc8f4833ffe1e9d38d372e8d37

    • SHA1

      05ef2f4e333c56852abc6f353c90e103f1ee03ad

    • SHA256

      4b7bfa5a4fd36955e97d87ed28f0aa310d0a12b33e18839b52f7099e44f76e8c

    • SHA512

      b8a8ec4203aa5f358afbecd810aa86730c2b3ef893e199ce82ba81f9f39e48ea72837895c73717d87030ed32e98125702c1989cff971213f4a0dcaa1815a0dcf

    • SSDEEP

      49152:7OOh3aN4kuLbegmtGPXvYMLprznyDSga9:LU4ku/ctwXvYCp3nyG

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks