Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 20:27

General

  • Target

    2024-07-01_cf56ae92e231c96ac31fca902aee4b95_ryuk.exe

  • Size

    5.5MB

  • MD5

    cf56ae92e231c96ac31fca902aee4b95

  • SHA1

    1201c6107c2b9a13bf56afca5312a340eb0cf206

  • SHA256

    e37bd39bf2bf3b120124f997ca7594746aafbc2765484c63d3995935dffddc5c

  • SHA512

    0cd53366d8733fa1d0edc6fc98adee3ae303a12a2d4f8709cc8033eecd233816a6a95efb2d213fa865663273af0e3a7514bba7df6070c98132b374c65372733e

  • SSDEEP

    49152:MEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfV:6AI5pAdVJn9tbnR1VgBVmaEnW6at

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-07-01_cf56ae92e231c96ac31fca902aee4b95_ryuk.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-07-01_cf56ae92e231c96ac31fca902aee4b95_ryuk.exe"
    1⤵
      PID:2480

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2480-0-0x0000000140000000-0x0000000140592000-memory.dmp

      Filesize

      5.6MB