General

  • Target

    2024-06-11_b3171d508b6a83e7cfca1f8d69daafe4_ryuk

  • Size

    4.6MB

  • Sample

    240611-vnxyqathne

  • MD5

    b3171d508b6a83e7cfca1f8d69daafe4

  • SHA1

    c0c588c60fee2cc5c8a4e31b68d3b0bcdd034340

  • SHA256

    5644703fe0debd1ad32bd1577949bba261a7404368837ade4cd95d75d74c8b55

  • SHA512

    bb342c86987ef0d3ba639ac4a03f2e038bcf6d4740392fb5aa2115f04524a3176bb82b758c2412ab95b47a86783467466e633520e5d0300644bfcdd6b374ffec

  • SSDEEP

    49152:5ndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGw:F2D8siFIIm3Gob5iEBPHn3

Score
7/10

Malware Config

Targets

    • Target

      2024-06-11_b3171d508b6a83e7cfca1f8d69daafe4_ryuk

    • Size

      4.6MB

    • MD5

      b3171d508b6a83e7cfca1f8d69daafe4

    • SHA1

      c0c588c60fee2cc5c8a4e31b68d3b0bcdd034340

    • SHA256

      5644703fe0debd1ad32bd1577949bba261a7404368837ade4cd95d75d74c8b55

    • SHA512

      bb342c86987ef0d3ba639ac4a03f2e038bcf6d4740392fb5aa2115f04524a3176bb82b758c2412ab95b47a86783467466e633520e5d0300644bfcdd6b374ffec

    • SSDEEP

      49152:5ndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGw:F2D8siFIIm3Gob5iEBPHn3

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks