Overview

overview

10

Static

static

3

2024-06-09...uk.exe

windows7-x64

10

2024-06-09...uk.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-09_99494f13c64f2d573e73dabb6708c162_ryuk

  • Size

    6.0MB

  • Sample

    240609-k7q96shc75

  • MD5

    99494f13c64f2d573e73dabb6708c162

  • SHA1

    31744d85b7e44574f4003a097b87ea4ad06c3ab1

  • SHA256

    c118e97a2a407e7d92ffb051908506eeae4a230f4d7629a445dd99155a70128b

  • SHA512

    1f5405864f2b37b4bb6f07126d92ff2df6b5011c228110042edca928029140e49892370e8b22f1e90ec6f04a0b6f50c11d4dc9fccc15d0cd1a105fe790db9c33

  • SSDEEP

    98304:pgBlcAjye2oY+88oTTj04hZIM8LY1USwmPji57PJsEMPCppMq2WkURzf6mLFUYoy:pglKe2o0XP9hZIM8TMa7PWEa0pJLLRzM

Score
10/10
metasploitbackdoorpyinstallertrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

8.134.160.8:7777

Targets

    • Target

      2024-06-09_99494f13c64f2d573e73dabb6708c162_ryuk

    • Size

      6.0MB

    • MD5

      99494f13c64f2d573e73dabb6708c162

    • SHA1

      31744d85b7e44574f4003a097b87ea4ad06c3ab1

    • SHA256

      c118e97a2a407e7d92ffb051908506eeae4a230f4d7629a445dd99155a70128b

    • SHA512

      1f5405864f2b37b4bb6f07126d92ff2df6b5011c228110042edca928029140e49892370e8b22f1e90ec6f04a0b6f50c11d4dc9fccc15d0cd1a105fe790db9c33

    • SSDEEP

      98304:pgBlcAjye2oY+88oTTj04hZIM8LY1USwmPji57PJsEMPCppMq2WkURzf6mLFUYoy:pglKe2o0XP9hZIM8TMa7PWEa0pJLLRzM

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks