hxxp://yugen[.]to | Triage

Submit
Reports

Overview

overview

9

Static

static

1

URLScan

urlscan

1

http://yugen.to

windows10-2004-x64

1

http://yugen.to

android-11-x64

9

Sharing

General

Target

http://yugen.to
Sample

230708-nykmtaeg78

Score

9^/10

android evasion ransomware

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

http://yugen.to

Resource

win10v2004-20230703-en

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

http://yugen.to

Resource

android-x64-arm64-20230621-en

evasion ransomware

android-11-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  http://yugen.to
Score

9^/10

evasion ransomware
- Renames multiple (74) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Removes a system notification.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

evasionransomware

© 2018-2025

Terms | Privacy