General

  • Target

    2024-06-12_ab7253128fe748f82326dc75c3fa863c_ryuk

  • Size

    4.6MB

  • Sample

    240612-whklwaxgmq

  • MD5

    ab7253128fe748f82326dc75c3fa863c

  • SHA1

    530c7e34ac905d4deabb0108290bc509067f0bb8

  • SHA256

    761681823f6c0e228bb1eb46cc3f45ee34fcfc274e956e4d3493fa75049238dd

  • SHA512

    f955fb722c4211d1b9826120ad677218909bb7176da82cccf1945b22ff89d640411bbe6aeb478f6a108d65907dbd2e7c65fc61466e7cbb6c89206a02e1029533

  • SSDEEP

    49152:IndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGv:C2D8siFIIm3Gob5iEAqo4w

Score
7/10

Malware Config

Targets

    • Target

      2024-06-12_ab7253128fe748f82326dc75c3fa863c_ryuk

    • Size

      4.6MB

    • MD5

      ab7253128fe748f82326dc75c3fa863c

    • SHA1

      530c7e34ac905d4deabb0108290bc509067f0bb8

    • SHA256

      761681823f6c0e228bb1eb46cc3f45ee34fcfc274e956e4d3493fa75049238dd

    • SHA512

      f955fb722c4211d1b9826120ad677218909bb7176da82cccf1945b22ff89d640411bbe6aeb478f6a108d65907dbd2e7c65fc61466e7cbb6c89206a02e1029533

    • SSDEEP

      49152:IndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGv:C2D8siFIIm3Gob5iEAqo4w

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks