Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01-06-2024 07:23

General

  • Target

    2024-06-01_39433f9f52516421143c8240c6c29e01_ryuk.exe

  • Size

    5.5MB

  • MD5

    39433f9f52516421143c8240c6c29e01

  • SHA1

    6a15ac8b7220af6e616c09fb162893919fb34431

  • SHA256

    16717b48c8ff2373974b15f403845e135de6b5407fc57023085ffc3527ebadaf

  • SHA512

    064c90e6b4be365cd52eb8e9297549f96942b6be5cd68483f5b9c2e3f33446aa07325d2c63d5546f3e0d8f5a4161b0734173dcd4c842c20ea541858b63c11fa0

  • SSDEEP

    49152:AEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfY:OAI5pAdVJn9tbnR1VgBVmD+pFtFR

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-06-01_39433f9f52516421143c8240c6c29e01_ryuk.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-06-01_39433f9f52516421143c8240c6c29e01_ryuk.exe"
    1⤵
      PID:1540

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1540-0-0x0000000140000000-0x0000000140592000-memory.dmp

      Filesize

      5.6MB