Analysis Overview
SHA256
875cff1355f032b4cf8a931fe1e1ef21261d159d6370d8ad160035e1830c7116
Threat Level: Likely benign
The file 2024-06-12_1ee21158699333a8eef0c988f8ce48e8_ryuk was found to be: Likely benign.
Malicious Activity Summary
Unsigned PE
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-12 15:47
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-12 15:47
Reported
2024-06-12 15:47
Platform
win7-20240508-en
Max time kernel
0s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\2024-06-12_1ee21158699333a8eef0c988f8ce48e8_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-06-12_1ee21158699333a8eef0c988f8ce48e8_ryuk.exe"
Network
Files
memory/1868-0-0x0000000140000000-0x00000001401B6000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-12 15:47
Reported
2024-06-12 15:47
Platform
win10v2004-20240508-en
Max time kernel
0s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\2024-06-12_1ee21158699333a8eef0c988f8ce48e8_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-06-12_1ee21158699333a8eef0c988f8ce48e8_ryuk.exe"
Network
Files
memory/216-0-0x0000000140000000-0x00000001401B6000-memory.dmp