7a2fc23d9156738945fdd44552b2f2b6866003ced8c89c1451c86706d5c3a8d7 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-06-05...uk.exe

windows7-x64

1

2024-06-05...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-05_2c552c2f9cd37dbdd316080322ca5906_ryuk
Size

1.7MB
Sample

240605-lv1hradb87
MD5

2c552c2f9cd37dbdd316080322ca5906
SHA1

6c90a5a3846117ac2ae1b464d7398621337c6456
SHA256

7a2fc23d9156738945fdd44552b2f2b6866003ced8c89c1451c86706d5c3a8d7
SHA512

5421bd41e84b355715f5d099208d1ebab84c9365ced248c88297c8d9c44961569223b60a47841ca2bbb226ebe8022944fbf7dd014cdba1d8fd4fb5b23c3b050b
SSDEEP

24576:86V6VC/AyqGizWCaFbyRTNjx+mZCkt76f/24pN+XNqNG6hditW:86cbGizWCaFbUf9Ckt7c20+9qNxUW

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-06-05_2c552c2f9cd37dbdd316080322ca5906_ryuk.exe

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-05_2c552c2f9cd37dbdd316080322ca5906_ryuk.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-05_2c552c2f9cd37dbdd316080322ca5906_ryuk
- Size
  
  1.7MB
- MD5
  
  2c552c2f9cd37dbdd316080322ca5906
- SHA1
  
  6c90a5a3846117ac2ae1b464d7398621337c6456
- SHA256
  
  7a2fc23d9156738945fdd44552b2f2b6866003ced8c89c1451c86706d5c3a8d7
- SHA512
  
  5421bd41e84b355715f5d099208d1ebab84c9365ced248c88297c8d9c44961569223b60a47841ca2bbb226ebe8022944fbf7dd014cdba1d8fd4fb5b23c3b050b
- SSDEEP
  
  24576:86V6VC/AyqGizWCaFbyRTNjx+mZCkt76f/24pN+XNqNG6hditW:86cbGizWCaFbUf9Ckt7c20+9qNxUW
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy