General

  • Target

    2024-06-12_2edc2339c0dc66b32e8c4997762f0657_ryuk

  • Size

    4.6MB

  • Sample

    240612-rwmaeasbqq

  • MD5

    2edc2339c0dc66b32e8c4997762f0657

  • SHA1

    b2afeb0ccc7751542c21a5b2a95a1a9e7d294658

  • SHA256

    26c2881859ce8f79c0e4d64bb5817f5936004c79fb32bb06d7ada50d6a45b224

  • SHA512

    3230c703c91808a8ed0eacec1ef850074d319cfdaf220f63bd165c1489ad7b474d63d727c32051f6ec93a3ec93088a87a7b29a5a4e77fcc2b30fc6244d2ec130

  • SSDEEP

    49152:qZZ3v2piy/Gjw12Z2KWUEC8s1gDK1+PuWDpXGMKpBQ8iBjcDoDLNnrFclC/qtBG/:aQC3MPuWg8h8K6G0D527BWG

Score
7/10

Malware Config

Targets

    • Target

      2024-06-12_2edc2339c0dc66b32e8c4997762f0657_ryuk

    • Size

      4.6MB

    • MD5

      2edc2339c0dc66b32e8c4997762f0657

    • SHA1

      b2afeb0ccc7751542c21a5b2a95a1a9e7d294658

    • SHA256

      26c2881859ce8f79c0e4d64bb5817f5936004c79fb32bb06d7ada50d6a45b224

    • SHA512

      3230c703c91808a8ed0eacec1ef850074d319cfdaf220f63bd165c1489ad7b474d63d727c32051f6ec93a3ec93088a87a7b29a5a4e77fcc2b30fc6244d2ec130

    • SSDEEP

      49152:qZZ3v2piy/Gjw12Z2KWUEC8s1gDK1+PuWDpXGMKpBQ8iBjcDoDLNnrFclC/qtBG/:aQC3MPuWg8h8K6G0D527BWG

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks