Overview

overview

7

Static

static

3

2024-09-07...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-09-07_079b13afe20c3a13d9e5eadef530cafd_cobalt-strike_ryuk

  • Size

    4.1MB

  • Sample

    240907-w1fqmsxfll

  • MD5

    079b13afe20c3a13d9e5eadef530cafd

  • SHA1

    1672454b42cda46ec28b7d6aece40ec4a2ffe951

  • SHA256

    04d44ecbb5058c8140ea2848124ff58c87b59b5fb8db3f499aff4e8708a6b173

  • SHA512

    7fba50a1b1cf3042e203236ec0b096dea85bd657ed7a2d41e8d349791af390ac02a38717e88c15b2985d36bd874736ddaba951f2d804aec262cd2b03461fd99e

  • SSDEEP

    49152:cWRqwwZBbklQCzHswt3Eo0Gl6zanvVD9ctavPDetDsDmg27RnWGj:w/DQHphEo0MG/ID527BWG

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      2024-09-07_079b13afe20c3a13d9e5eadef530cafd_cobalt-strike_ryuk

    • Size

      4.1MB

    • MD5

      079b13afe20c3a13d9e5eadef530cafd

    • SHA1

      1672454b42cda46ec28b7d6aece40ec4a2ffe951

    • SHA256

      04d44ecbb5058c8140ea2848124ff58c87b59b5fb8db3f499aff4e8708a6b173

    • SHA512

      7fba50a1b1cf3042e203236ec0b096dea85bd657ed7a2d41e8d349791af390ac02a38717e88c15b2985d36bd874736ddaba951f2d804aec262cd2b03461fd99e

    • SSDEEP

      49152:cWRqwwZBbklQCzHswt3Eo0Gl6zanvVD9ctavPDetDsDmg27RnWGj:w/DQHphEo0MG/ID527BWG

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks