General

  • Target

    2024-06-11_30cf03d120b6f67da26ca20bbde2bc09_ryuk

  • Size

    1.1MB

  • Sample

    240611-vb7mdstepd

  • MD5

    30cf03d120b6f67da26ca20bbde2bc09

  • SHA1

    897bdc3ccaf7c22e8c763bacbb36932da2315ee9

  • SHA256

    d0e04195e86960036d20c61bdcf9b922da1940d8456e3e99367440e17df63434

  • SHA512

    9505b48cb4ebf177b39f893a4b0ea7c442a06117c04760ea899722fa7b6af220525ffad50d182d0992011c93595084cac5f09df94abef83c9ac7e5d1b54e6868

  • SSDEEP

    24576:+Si1SoCU5qJSr1eWPSCsP0MugC6eTQ65gcTVjUCs2Vo2:eS7PLjeTQ65RjUV2Vo

Score
7/10

Malware Config

Targets

    • Target

      2024-06-11_30cf03d120b6f67da26ca20bbde2bc09_ryuk

    • Size

      1.1MB

    • MD5

      30cf03d120b6f67da26ca20bbde2bc09

    • SHA1

      897bdc3ccaf7c22e8c763bacbb36932da2315ee9

    • SHA256

      d0e04195e86960036d20c61bdcf9b922da1940d8456e3e99367440e17df63434

    • SHA512

      9505b48cb4ebf177b39f893a4b0ea7c442a06117c04760ea899722fa7b6af220525ffad50d182d0992011c93595084cac5f09df94abef83c9ac7e5d1b54e6868

    • SSDEEP

      24576:+Si1SoCU5qJSr1eWPSCsP0MugC6eTQ65gcTVjUCs2Vo2:eS7PLjeTQ65RjUV2Vo

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks