Overview

overview

10

Static

static

10

f7f85240ef...03.exe

windows7-x64

10

f7f85240ef...03.exe

windows10-2004-x64

10

out.exe

windows7-x64

1

out.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f7f85240efa2ebe980a83df6c3d834699703ba1c3c5f38ec58687aba219a0c03

  • Size

    2.4MB

  • MD5

    18ad51c411e955400dfda2e1ec290d25

  • SHA1

    f5a896e93f0c068441bbf2d76fd44571a61869b8

  • SHA256

    f7f85240efa2ebe980a83df6c3d834699703ba1c3c5f38ec58687aba219a0c03

  • SHA512

    6a5315f66dec6f8a790c2aa39f656170fcd4c6507f0364cc949c97af41439b4fb1d6f4f131e513b00c06ac6a17906b9cbced8db1c57fe800ed0955b10d928a9f

  • SSDEEP

    49152:j5t2anwKeCP+0NevGW/9WVttBfZir9TXpbyGu9LgBg6cuquAbyJKfHYAMHz5kURY:72anw5CP+eeR1MtPZiZTXp+Gu9Lr6cu8

Score
10/10
upxsnatch

Malware Config

Signatures

  • Detecting the common Go functions and variables names used by Snatch ransomware 1 IoCs
  • Snatch family
    snatch
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f7f85240efa2ebe980a83df6c3d834699703ba1c3c5f38ec58687aba219a0c03
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections