General

  • Target

    2024-10-21_2087c2ee7ad30d5705938e17b39bc289_ryuk

  • Size

    1.8MB

  • Sample

    241021-lheqhszgkq

  • MD5

    2087c2ee7ad30d5705938e17b39bc289

  • SHA1

    8bf692a779565dc244168efd1730aa44c0478202

  • SHA256

    72a2d2573e3217da7fd8db0f88a9fd63b7978ab1dbc711bf36277d55484155b1

  • SHA512

    ccea4d744e7bb257a835393330e94173edecd01acf8fb7d1c30a4832faa601cbadb577128443fa277a7d9cf2dcc4b158c2089d1e847baa8ebcab1130c79708b6

  • SSDEEP

    12288:RObaA4LWOsvAYFTjAdTv4YFZFAB1dDwdnnY0VKd7rZAjKJcevzs7cT6gJDqQ+:GiL3UToTvJzY0VKRr6mcQDT6z

Score
7/10

Malware Config

Targets

    • Target

      2024-10-21_2087c2ee7ad30d5705938e17b39bc289_ryuk

    • Size

      1.8MB

    • MD5

      2087c2ee7ad30d5705938e17b39bc289

    • SHA1

      8bf692a779565dc244168efd1730aa44c0478202

    • SHA256

      72a2d2573e3217da7fd8db0f88a9fd63b7978ab1dbc711bf36277d55484155b1

    • SHA512

      ccea4d744e7bb257a835393330e94173edecd01acf8fb7d1c30a4832faa601cbadb577128443fa277a7d9cf2dcc4b158c2089d1e847baa8ebcab1130c79708b6

    • SSDEEP

      12288:RObaA4LWOsvAYFTjAdTv4YFZFAB1dDwdnnY0VKd7rZAjKJcevzs7cT6gJDqQ+:GiL3UToTvJzY0VKRr6mcQDT6z

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks