Overview

overview

7

Static

static

3

2024-08-29...uk.exe

windows7-x64

7

2024-08-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-08-29_a241147bccca5c0def0503041f06bc88_ryuk

  • Size

    13.5MB

  • Sample

    240829-kzfhpstajh

  • MD5

    a241147bccca5c0def0503041f06bc88

  • SHA1

    e12dc9de012233ef3c90e7c249db0fb68ce9259e

  • SHA256

    d31380f8f8e9432818fc9c00356f88d07c3a6d14848df580b36bc5a15441f2ec

  • SHA512

    1d5bd1a530345da25618b498ecaf4205aa458ab38f69a5e9ba03635a941551d61a8f1f2f409d2b15f86adc804bf948ab6185662cd65593e0bea80c86a0a7a45e

  • SSDEEP

    98304:O50Ft2K3a7L7pLLILSh/uxXrc5ii110dB:O5KtsImSybM

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      2024-08-29_a241147bccca5c0def0503041f06bc88_ryuk

    • Size

      13.5MB

    • MD5

      a241147bccca5c0def0503041f06bc88

    • SHA1

      e12dc9de012233ef3c90e7c249db0fb68ce9259e

    • SHA256

      d31380f8f8e9432818fc9c00356f88d07c3a6d14848df580b36bc5a15441f2ec

    • SHA512

      1d5bd1a530345da25618b498ecaf4205aa458ab38f69a5e9ba03635a941551d61a8f1f2f409d2b15f86adc804bf948ab6185662cd65593e0bea80c86a0a7a45e

    • SSDEEP

      98304:O50Ft2K3a7L7pLLILSh/uxXrc5ii110dB:O5KtsImSybM

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks