General

  • Target

    2024-06-08_c0e133624ab55c83d32a0b1eb3f8ac79_ryuk

  • Size

    12.6MB

  • MD5

    c0e133624ab55c83d32a0b1eb3f8ac79

  • SHA1

    96bbbd912b77c18f23900eaa44b295574a619c86

  • SHA256

    3318a8d71c742dec028b0e31d32411ee157d9e775cd47e279c0d2a01c8ea62e6

  • SHA512

    8945ebfa9f044cf58707ee0a3dccb241ba0bf8de31e072f4a33a6e2d62a49d5cc6ff2aa2fde0aec1103ec1cc1a88dc49cf24825d7e0ab43d42d98025df00bfea

  • SSDEEP

    196608:ILX8SiCGurDz5o/VP7TyT8xw3y0Kl2OCxnS3qO5q:Ir78urDz5o/xT1wi0U2b4x5q

Score
10/10

Malware Config

Signatures

  • Detects executables packed with Dotfuscator 1 IoCs
  • Detects executables packed with SmartAssembly 1 IoCs
  • Detects executables packed with Yano Obfuscator 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-08_c0e133624ab55c83d32a0b1eb3f8ac79_ryuk
    .exe windows:5 windows x64 arch:x64

    15b0d359b0d004363a1c9a125be29113


    Headers

    Imports

    Exports

    Sections