Overview

overview

7

Static

static

3

2024-06-25...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-25_eaf9a03fc95bd5eaf9880a04a43d38dc_ryuk

  • Size

    4.6MB

  • Sample

    240625-ty8mjatclp

  • MD5

    eaf9a03fc95bd5eaf9880a04a43d38dc

  • SHA1

    45656bc36918cc00d6fbad880045a3e01415d7b4

  • SHA256

    d5be2d5aa4e7b64c8d56675b8c4a0d3d03593c968942bca4c0ba9767ad5086c5

  • SHA512

    6ffd1c8a22de7c69dc556e1593981c8496f8e2a0b537ce974996988024c8e0f15f9b67001397dd66c0e566b1ac99ea9cc8447db6faf941ce9670dc2df36877d7

  • SSDEEP

    49152:undPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGt:02D8siFIIm3Gob5iEszS

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-06-25_eaf9a03fc95bd5eaf9880a04a43d38dc_ryuk

    • Size

      4.6MB

    • MD5

      eaf9a03fc95bd5eaf9880a04a43d38dc

    • SHA1

      45656bc36918cc00d6fbad880045a3e01415d7b4

    • SHA256

      d5be2d5aa4e7b64c8d56675b8c4a0d3d03593c968942bca4c0ba9767ad5086c5

    • SHA512

      6ffd1c8a22de7c69dc556e1593981c8496f8e2a0b537ce974996988024c8e0f15f9b67001397dd66c0e566b1ac99ea9cc8447db6faf941ce9670dc2df36877d7

    • SSDEEP

      49152:undPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGt:02D8siFIIm3Gob5iEszS

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks