Overview

overview

7

Static

static

3

2024-06-14...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-14_706dda6cb1d0d1e9be0eb65879a914bb_ryuk

  • Size

    4.6MB

  • Sample

    240614-w88fmawdkp

  • MD5

    706dda6cb1d0d1e9be0eb65879a914bb

  • SHA1

    084558247dbca31e52f3a47c68334aae4ef23fd8

  • SHA256

    4ddca2d8393bcb6e6df3d42f8487df594cda60343f327225036adb5aa972b600

  • SHA512

    5fa88d44cdbdfde9e08a33ba6db2f9e7abc00ab620637af6f8c7311db727f26a2e028a7ff042cb121dfe4daf8777a479ea1004637cd30d029a8a96db05a7f6e8

  • SSDEEP

    49152:X3Ncw4INSd5Lk6iKpssiMWIYB3Dpd84n8zonABGRzaDh0QAOnLSNQUo6VuoHDmgo:rGixpMWIYB3dZqLObD527BWG

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      2024-06-14_706dda6cb1d0d1e9be0eb65879a914bb_ryuk

    • Size

      4.6MB

    • MD5

      706dda6cb1d0d1e9be0eb65879a914bb

    • SHA1

      084558247dbca31e52f3a47c68334aae4ef23fd8

    • SHA256

      4ddca2d8393bcb6e6df3d42f8487df594cda60343f327225036adb5aa972b600

    • SHA512

      5fa88d44cdbdfde9e08a33ba6db2f9e7abc00ab620637af6f8c7311db727f26a2e028a7ff042cb121dfe4daf8777a479ea1004637cd30d029a8a96db05a7f6e8

    • SSDEEP

      49152:X3Ncw4INSd5Lk6iKpssiMWIYB3Dpd84n8zonABGRzaDh0QAOnLSNQUo6VuoHDmgo:rGixpMWIYB3dZqLObD527BWG

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks