d7282560ea6866c7db7c7529027b6a4d955943ac337771d320dfec9a35057d07 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-06-20...uk.exe

windows7-x64

1

2024-06-20...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-20_175f0336c3703e706ab644a56e1bd89e_ryuk
Size

5.5MB
Sample

240620-r6sj6sshma
MD5

175f0336c3703e706ab644a56e1bd89e
SHA1

d333ce17d2ac8ca545645693a2c9b8f99957f71f
SHA256

d7282560ea6866c7db7c7529027b6a4d955943ac337771d320dfec9a35057d07
SHA512

f9d3f63f7d682efc7b4178ab2050a8569cbb68b26547168a1db5c509811a721784782366c53ec895e26870f7e1b2fd79f82bb38c6feb52f948c8f0ebebfb92c6
SSDEEP

98304:SAI5pAdVJn9tbnR1VgBVmfU7dG1yfpVBlH:SAsCh7XYCUoiPBx

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-06-20_175f0336c3703e706ab644a56e1bd89e_ryuk.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-20_175f0336c3703e706ab644a56e1bd89e_ryuk.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-20_175f0336c3703e706ab644a56e1bd89e_ryuk
- Size
  
  5.5MB
- MD5
  
  175f0336c3703e706ab644a56e1bd89e
- SHA1
  
  d333ce17d2ac8ca545645693a2c9b8f99957f71f
- SHA256
  
  d7282560ea6866c7db7c7529027b6a4d955943ac337771d320dfec9a35057d07
- SHA512
  
  f9d3f63f7d682efc7b4178ab2050a8569cbb68b26547168a1db5c509811a721784782366c53ec895e26870f7e1b2fd79f82bb38c6feb52f948c8f0ebebfb92c6
- SSDEEP
  
  98304:SAI5pAdVJn9tbnR1VgBVmfU7dG1yfpVBlH:SAsCh7XYCUoiPBx
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy