2024-06-10_9a0d38010a24983ea07102b8de2e06db_ryuk

Sharing

Copy URL

Twitter E-mail

General

Target

2024-06-10_9a0d38010a24983ea07102b8de2e06db_ryuk
Size

315KB
MD5

9a0d38010a24983ea07102b8de2e06db
SHA1

88c336e43fb890a6094e9de6815f950120f30d9f
SHA256

7a59ea66e7c4a6c0f9b99d9714422a9b172083af71074f91223e469c2202e187
SHA512

ee3543592f0cb291981789e5249d3ce0d357a46fe7d1a9edc14dec224711e6851aba421b77e64df2f0ce1ff097bfc5505b4de830ec1bfa206decc8791f8603bf
SSDEEP

6144:X7SQ8mvYdQvSeQRmLmmCdG4oA4lQOhwnjU0Q5rohYTWdS:X2QidW//LmmC742D+roNdS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-10_9a0d38010a24983ea07102b8de2e06db_ryuk

Files

2024-06-10_9a0d38010a24983ea07102b8de2e06db_ryuk
.exe windows:6 windows x64 arch:x64

c43957f24ddb70e774bf3c9aebda5c7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

sutil_sdk

?getPtxString@sutil@@YAPEBDPEBD0PEAPEBD@Z
?parseDimensions@sutil@@YAXPEBDAEAH1@Z
?calculateCameraVariables@sutil@@YAXUfloat3@optix@@00MMAEAU23@11_N@Z
?displayBufferPPM@sutil@@YAXPEBDV?$Handle@VBufferObj@optix@@@optix@@@Z
?displayBufferGlut@sutil@@YAXPEBDV?$Handle@VBufferObj@optix@@@optix@@@Z
?initGlut@sutil@@YAXPEAHPEAPEAD@Z
?handleError@sutil@@YAXPEAURTcontext_api@@W4RTresult@@PEBDH@Z
?reportErrorMessage@sutil@@YAXPEBD@Z

optix.1

rtBufferSetSize2D
rtBufferMapEx
rtBufferUnmapEx
rtBufferGetId
rtBufferSetSize1D
rtBufferSetFormat
rtBufferGetContext
rtBufferValidate
rtBufferDestroy
rtBufferCreate
rtMaterialGetVariable
rtMaterialGetVariableCount
rtMaterialRemoveVariable
rtMaterialQueryVariable
rtMaterialDeclareVariable
rtMaterialSetAnyHitProgram
rtMaterialSetClosestHitProgram
rtMaterialGetContext
rtMaterialValidate
rtMaterialDestroy
rtMaterialCreate
rtGeometryGetVariable
rtGeometryGetVariableCount
rtGeometryRemoveVariable
rtGeometryQueryVariable
rtGeometryDeclareVariable
rtGeometrySetIntersectionProgram
rtGeometrySetBoundingBoxProgram
rtGeometrySetPrimitiveCount
rtGeometryGetContext
rtGeometryValidate
rtGeometryDestroy
rtGeometryCreate
rtGeometryInstanceGetVariable
rtGeometryInstanceGetVariableCount
rtGeometryInstanceRemoveVariable
rtGeometryInstanceQueryVariable
rtGeometryInstanceDeclareVariable
rtGeometryInstanceSetMaterial
rtGeometryInstanceSetMaterialCount
rtGeometryInstanceSetGeometry
rtGeometryInstanceGetContext
rtGeometryInstanceValidate
rtGeometryInstanceDestroy
rtGeometryInstanceCreate
rtAccelerationSetBuilder
rtAccelerationGetContext
rtAccelerationValidate
rtAccelerationDestroy
rtAccelerationCreate
rtGeometryGroupSetChild
rtGeometryGroupSetChildCount
rtGeometryGroupSetAcceleration
rtGeometryGroupGetContext
rtGeometryGroupValidate
rtGeometryGroupDestroy
rtGeometryGroupCreate
rtProgramGetVariable
rtProgramGetVariableCount
rtProgramRemoveVariable
rtProgramQueryVariable
rtProgramDeclareVariable
rtProgramGetContext
rtProgramValidate
rtProgramDestroy
rtProgramCreateFromPTXString
rtContextGetVariable
rtContextGetVariableCount
rtContextRemoveVariable
rtContextQueryVariable
rtContextDeclareVariable
rtContextLaunch2D
rtContextSetMissProgram
rtContextSetRayTypeCount
rtContextSetExceptionProgram
rtContextSetRayGenerationProgram
rtContextSetEntryPointCount
rtContextSetStackSize
rtContextGetErrorString
rtContextValidate
rtContextDestroy
rtContextCreate
rtVariableGetContext
rtVariableGetObject
rtVariableSetObject
rtVariableSet1ui
rtVariableSet1i
rtVariableSet4fv
rtVariableSet3fv
rtVariableSet4f
rtVariableSet3f
rtVariableSet1f
rtBufferSetElementSize

kernel32

CreateFileW
HeapSize
ReadConsoleW
WriteConsoleW
SetStdHandle
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetProcessHeap
GetFileType
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetACP
GetCommandLineW
GetCommandLineA
WriteFile
GetStdHandle
GetModuleFileNameA
HeapReAlloc
HeapFree
HeapAlloc
GetModuleHandleExW
ExitProcess
LoadLibraryExW
FreeLibrary
GetLastError
RtlUnwindEx
RaiseException
RtlPcToFileHeader
InitializeSListHead
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WaitForSingleObjectEx
ResetEvent
SetEvent
CloseHandle
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetProcAddress
GetModuleHandleW
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateEventW
InitializeCriticalSectionAndSpinCount
SetLastError
DecodePointer
EncodePointer
MultiByteToWideChar
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WideCharToMultiByte

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c43957f24ddb70e774bf3c9aebda5c7f

Headers

DLL Characteristics

File Characteristics

Imports

sutil_sdk

optix.1

kernel32

Sections

.text Size: 172KB - Virtual size: 171KB

.rdata Size: 98KB - Virtual size: 97KB

.data Size: 5KB - Virtual size: 11KB

.pdata Size: 10KB - Virtual size: 9KB

.gfids Size: 1024B - Virtual size: 540B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 172KB - Virtual size: 171KB

.rdata
Size: 98KB - Virtual size: 97KB

.data
Size: 5KB - Virtual size: 11KB

.pdata
Size: 10KB - Virtual size: 9KB

.gfids
Size: 1024B - Virtual size: 540B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 3KB - Virtual size: 3KB