General

  • Target

    2024-06-11_d0bcb20b537bf651cde5f49b8473c23a_ryuk

  • Size

    4.6MB

  • Sample

    240611-vq136avalf

  • MD5

    d0bcb20b537bf651cde5f49b8473c23a

  • SHA1

    e6825738615df1230eff99868204302ef534a39c

  • SHA256

    f93bdf70da88d0a9331bdbaf9d7a2399cde188d045637704d861911112d04eac

  • SHA512

    b16c15e0386406c37ad73dd0a337c7acc8135bb705941404852098c4198299f235e95cc1489ece508afe790ec864c8325d1b7f15e39d2c7ce33e2cb7d338beaa

  • SSDEEP

    49152:NndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGE:p2D8siFIIm3Gob5iEDqo4w

Score
7/10

Malware Config

Targets

    • Target

      2024-06-11_d0bcb20b537bf651cde5f49b8473c23a_ryuk

    • Size

      4.6MB

    • MD5

      d0bcb20b537bf651cde5f49b8473c23a

    • SHA1

      e6825738615df1230eff99868204302ef534a39c

    • SHA256

      f93bdf70da88d0a9331bdbaf9d7a2399cde188d045637704d861911112d04eac

    • SHA512

      b16c15e0386406c37ad73dd0a337c7acc8135bb705941404852098c4198299f235e95cc1489ece508afe790ec864c8325d1b7f15e39d2c7ce33e2cb7d338beaa

    • SSDEEP

      49152:NndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGE:p2D8siFIIm3Gob5iEDqo4w

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks