General

  • Target

    2024-06-02_ba57c34f59401ca88f649bdabc36d032_ryuk

  • Size

    4.6MB

  • Sample

    240602-r2wq2aff95

  • MD5

    ba57c34f59401ca88f649bdabc36d032

  • SHA1

    a65637559b458555731a634a18f2500bd7954db9

  • SHA256

    ce1b15e9e33eeef134d3427de0ebdb94c868d8fe53c8220c823e818d84e7f74b

  • SHA512

    f04aa10e22eb37d4955da432d10d84d3c75492aa64909bb3ab08833bbb8a22c902ba603b8a87d665dfb638cb3f9ebb001b0d092cd79b19b751f3cf2d03c9cf5e

  • SSDEEP

    49152:gndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGK:K2D8siFIIm3Gob5iEz3zlQpRQQY

Score
7/10

Malware Config

Targets

    • Target

      2024-06-02_ba57c34f59401ca88f649bdabc36d032_ryuk

    • Size

      4.6MB

    • MD5

      ba57c34f59401ca88f649bdabc36d032

    • SHA1

      a65637559b458555731a634a18f2500bd7954db9

    • SHA256

      ce1b15e9e33eeef134d3427de0ebdb94c868d8fe53c8220c823e818d84e7f74b

    • SHA512

      f04aa10e22eb37d4955da432d10d84d3c75492aa64909bb3ab08833bbb8a22c902ba603b8a87d665dfb638cb3f9ebb001b0d092cd79b19b751f3cf2d03c9cf5e

    • SSDEEP

      49152:gndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGK:K2D8siFIIm3Gob5iEz3zlQpRQQY

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks