General

  • Target

    2024-06-01_5da71e12a008925a098704076a55cfb7_ryuk

  • Size

    5.5MB

  • Sample

    240601-g9k96ade23

  • MD5

    5da71e12a008925a098704076a55cfb7

  • SHA1

    f1018edd27e29432a03394f3ee06dc8b0dab4773

  • SHA256

    2bef39991fcb558d7099bd5d8f4f4f807c5a6dc5725378ec3371c3e538db3d89

  • SHA512

    706effda170060f23f20b946b3ccf138d53345b51ab0acf2745baaece58b9a92711d89c27599d298768b21e5a442eb93f0bdead75ff9ceee6ce5aed0b55ade57

  • SSDEEP

    98304:+AI5pAdVJn9tbnR1VgBVm070uMhSBrkNq:+AsCh7XYTIoQ

Score
7/10

Malware Config

Targets

    • Target

      2024-06-01_5da71e12a008925a098704076a55cfb7_ryuk

    • Size

      5.5MB

    • MD5

      5da71e12a008925a098704076a55cfb7

    • SHA1

      f1018edd27e29432a03394f3ee06dc8b0dab4773

    • SHA256

      2bef39991fcb558d7099bd5d8f4f4f807c5a6dc5725378ec3371c3e538db3d89

    • SHA512

      706effda170060f23f20b946b3ccf138d53345b51ab0acf2745baaece58b9a92711d89c27599d298768b21e5a442eb93f0bdead75ff9ceee6ce5aed0b55ade57

    • SSDEEP

      98304:+AI5pAdVJn9tbnR1VgBVm070uMhSBrkNq:+AsCh7XYTIoQ

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks