General

  • Target

    2024-06-03_1203184c1d87e47335992bc59a9628ee_ryuk

  • Size

    1.9MB

  • Sample

    240603-lfazjsbc88

  • MD5

    1203184c1d87e47335992bc59a9628ee

  • SHA1

    383e47776ac3379f4d46f4a7288c129e7b914c02

  • SHA256

    cb50ce08fabb87ac8bb9374661affcd2c6d1d1f5881424363fda50241cdb9178

  • SHA512

    403e578b90b466c7cb70d25eb746f4be19a6203d0ca7ce1d01badbf1da54a1e59ec1cf7b8fe65a3ed343da204b756105a56d72f2c04dc7e0cdd743eff4aacbb8

  • SSDEEP

    24576:+78r8FfC3F32nUnCdAaKu++nO/6J17W8CX32+KJNA80T:+/fQF37CGaPxcW+S8

Score
7/10

Malware Config

Targets

    • Target

      2024-06-03_1203184c1d87e47335992bc59a9628ee_ryuk

    • Size

      1.9MB

    • MD5

      1203184c1d87e47335992bc59a9628ee

    • SHA1

      383e47776ac3379f4d46f4a7288c129e7b914c02

    • SHA256

      cb50ce08fabb87ac8bb9374661affcd2c6d1d1f5881424363fda50241cdb9178

    • SHA512

      403e578b90b466c7cb70d25eb746f4be19a6203d0ca7ce1d01badbf1da54a1e59ec1cf7b8fe65a3ed343da204b756105a56d72f2c04dc7e0cdd743eff4aacbb8

    • SSDEEP

      24576:+78r8FfC3F32nUnCdAaKu++nO/6J17W8CX32+KJNA80T:+/fQF37CGaPxcW+S8

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks