Overview

overview

7

Static

static

3

2024-06-20...uk.exe

windows7-x64

1

2024-06-20...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-20_0d6caa0092ad29ef2f4fafbfd2f4aa62_ryuk

  • Size

    5.5MB

  • Sample

    240620-q2y1qa1amf

  • MD5

    0d6caa0092ad29ef2f4fafbfd2f4aa62

  • SHA1

    a543e9b44236219edd646596bcf281d4a02d67dc

  • SHA256

    7db8a01e83c16c5323fed287cdb30d2fec9b313db905f93a951a82a73560eabe

  • SHA512

    0f663eee6fa3ae479d1249a18549b672c5b93557a5e9923c22b14d7aa6913f603078b05a2e00936be99accead9c8b6f79353c4a5511675a4bcebe901262cc134

  • SSDEEP

    49152:nEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfI:zAI5pAdVJn9tbnR1VgBVmOqo4w

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-06-20_0d6caa0092ad29ef2f4fafbfd2f4aa62_ryuk

    • Size

      5.5MB

    • MD5

      0d6caa0092ad29ef2f4fafbfd2f4aa62

    • SHA1

      a543e9b44236219edd646596bcf281d4a02d67dc

    • SHA256

      7db8a01e83c16c5323fed287cdb30d2fec9b313db905f93a951a82a73560eabe

    • SHA512

      0f663eee6fa3ae479d1249a18549b672c5b93557a5e9923c22b14d7aa6913f603078b05a2e00936be99accead9c8b6f79353c4a5511675a4bcebe901262cc134

    • SSDEEP

      49152:nEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfI:zAI5pAdVJn9tbnR1VgBVmOqo4w

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks