General

  • Target

    2024-11-08_b978c1b041c6f57195bfb898e9b4ff01_ryuk

  • Size

    1.1MB

  • Sample

    241108-qqz4mssma1

  • MD5

    b978c1b041c6f57195bfb898e9b4ff01

  • SHA1

    062ce814ac551baf14e25badf4d94fa0df66d606

  • SHA256

    2ba398a91a6742519c16e1f9172b1ed2c471e04cfe7aeea21f8358b81fe010b6

  • SHA512

    1692f7acea6087c3b91e42490789fcc4c01e46ac314e0197d56523cb63f391a7ee5f0afdc008bed73e17179bf70a24202c6bc4ddcc9ebac22d9d78d4a1f0c27e

  • SSDEEP

    24576:USi1SoCU5qJSr1eWPSCsP0MugC6eTwSkQ/7Gb8NLEbeZ:8S7PLjeT5kQ/qoLEw

Malware Config

Targets

    • Target

      2024-11-08_b978c1b041c6f57195bfb898e9b4ff01_ryuk

    • Size

      1.1MB

    • MD5

      b978c1b041c6f57195bfb898e9b4ff01

    • SHA1

      062ce814ac551baf14e25badf4d94fa0df66d606

    • SHA256

      2ba398a91a6742519c16e1f9172b1ed2c471e04cfe7aeea21f8358b81fe010b6

    • SHA512

      1692f7acea6087c3b91e42490789fcc4c01e46ac314e0197d56523cb63f391a7ee5f0afdc008bed73e17179bf70a24202c6bc4ddcc9ebac22d9d78d4a1f0c27e

    • SSDEEP

      24576:USi1SoCU5qJSr1eWPSCsP0MugC6eTwSkQ/7Gb8NLEbeZ:8S7PLjeT5kQ/qoLEw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks