Overview

overview

7

Static

static

3

2024-06-30...uk.exe

windows7-x64

1

2024-06-30...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-30_bfb15daa77f299d25fb0e86661bdd4ac_ryuk

  • Size

    5.5MB

  • Sample

    240630-tclwmstdpm

  • MD5

    bfb15daa77f299d25fb0e86661bdd4ac

  • SHA1

    b33e9a24cb00d75aae37deb1d1659f89693840db

  • SHA256

    aaa49e761382e01be5dc3a805738c3d8dd5aea6ca5411943c21fb4d38036eaf4

  • SHA512

    bafddb13241a9787d57f5b230960148d1e6106a5e3e552896781504c649de290cbd70290cba3d19e0b7c359639aa07909625798dab9481751377125ef4a5e76e

  • SSDEEP

    49152:yEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfK:YAI5pAdVJn9tbnR1VgBVmXfEkKK90

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-06-30_bfb15daa77f299d25fb0e86661bdd4ac_ryuk

    • Size

      5.5MB

    • MD5

      bfb15daa77f299d25fb0e86661bdd4ac

    • SHA1

      b33e9a24cb00d75aae37deb1d1659f89693840db

    • SHA256

      aaa49e761382e01be5dc3a805738c3d8dd5aea6ca5411943c21fb4d38036eaf4

    • SHA512

      bafddb13241a9787d57f5b230960148d1e6106a5e3e552896781504c649de290cbd70290cba3d19e0b7c359639aa07909625798dab9481751377125ef4a5e76e

    • SSDEEP

      49152:yEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfK:YAI5pAdVJn9tbnR1VgBVmXfEkKK90

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks