3e527ba8da88d2fdf91564359a8d046c48bcefd38eeae3d2daac53f948034715 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-06-02...uk.exe

windows7-x64

1

2024-06-02...uk.exe

windows10-2004-x64

7

Sharing

General

Target

2024-06-02_46253377db39227a49fe1ebb50cb6e98_ryuk
Size

5.5MB
Sample

240602-qvyflsee79
MD5

46253377db39227a49fe1ebb50cb6e98
SHA1

6870050890ef82e979490c659cfc8d2ce7da551e
SHA256

3e527ba8da88d2fdf91564359a8d046c48bcefd38eeae3d2daac53f948034715
SHA512

907fd971724d277db2204a2e2d116b6bb7bb19faaccc2ad7dd7900ba79a04fe1b3f05a6506ceff8f9906a0a268f261d36097fff58620b57b6618e2a28729f6d9
SSDEEP

49152:dEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfh:hAI5pAdVJn9tbnR1VgBVmnqo4w

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-06-02_46253377db39227a49fe1ebb50cb6e98_ryuk.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-02_46253377db39227a49fe1ebb50cb6e98_ryuk.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-02_46253377db39227a49fe1ebb50cb6e98_ryuk
- Size
  
  5.5MB
- MD5
  
  46253377db39227a49fe1ebb50cb6e98
- SHA1
  
  6870050890ef82e979490c659cfc8d2ce7da551e
- SHA256
  
  3e527ba8da88d2fdf91564359a8d046c48bcefd38eeae3d2daac53f948034715
- SHA512
  
  907fd971724d277db2204a2e2d116b6bb7bb19faaccc2ad7dd7900ba79a04fe1b3f05a6506ceff8f9906a0a268f261d36097fff58620b57b6618e2a28729f6d9
- SSDEEP
  
  49152:dEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfh:hAI5pAdVJn9tbnR1VgBVmnqo4w
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy