General

  • Target

    2024-06-11_9fa172e76fe93f534698bda210d80544_ryuk

  • Size

    2.2MB

  • Sample

    240611-vldr3avbnp

  • MD5

    9fa172e76fe93f534698bda210d80544

  • SHA1

    549deec34017aacb467a655d64a7fcff3048ca7b

  • SHA256

    8e1006583008b6a5bdd9eb32b42bc5cd8e7221809e4f7c79d771d1171b214f5a

  • SHA512

    547d3370fe955c152da30af02e782a0405c15e05fa67f6277524331becf42fd24dc8262ca96c211a0e6bb2417227ca7ac263704985c7e17bef31f911b55772fd

  • SSDEEP

    49152:NOOh3aN4kuLbegmtG8mgiTd8DsMcDKGfWbYCGE:tU4ku/ctlBiTLMiKGu8CP

Score
7/10

Malware Config

Targets

    • Target

      2024-06-11_9fa172e76fe93f534698bda210d80544_ryuk

    • Size

      2.2MB

    • MD5

      9fa172e76fe93f534698bda210d80544

    • SHA1

      549deec34017aacb467a655d64a7fcff3048ca7b

    • SHA256

      8e1006583008b6a5bdd9eb32b42bc5cd8e7221809e4f7c79d771d1171b214f5a

    • SHA512

      547d3370fe955c152da30af02e782a0405c15e05fa67f6277524331becf42fd24dc8262ca96c211a0e6bb2417227ca7ac263704985c7e17bef31f911b55772fd

    • SSDEEP

      49152:NOOh3aN4kuLbegmtG8mgiTd8DsMcDKGfWbYCGE:tU4ku/ctlBiTLMiKGu8CP

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks