Overview

overview

10

Static

static

10

bin/Encode....4.exe

windows11-21h2-x64

10

src/crypte...er.exe

windows11-21h2-x64

3

Resubmissions

04-01-2025 10:12

250104-l8py6svlfx 10

04-01-2025 10:11

250104-l7xbvsxjgk 10

04-01-2025 10:09

250104-l61ynaxjdr 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    EncoderBuilder password vazonez.rar

  • Size

    557KB

  • Sample

    250104-l8py6svlfx

  • MD5

    db9a548705cfc15f405f571fddecffe0

  • SHA1

    c43f7d464a44f442a8a3fb5bd4e77c290c02240f

  • SHA256

    5986ff1c3dc4ae35fb9747b6b591f527cd1b77393cc3a77b936a46d4b3936c29

  • SHA512

    0a842a158eee3239b024494d250bc1a81f2d0c53778aa755629d601bfafc53fec06e19c955ea4d0d8b81a4bfcb562f36fbbe806bbaa66734f23c0b877351cf18

  • SSDEEP

    12288:MAXGxT7VXQsuNcw4GcRxf4u4xO1OBa4dtCtog/8p+lTSG:yT7VXcNYVxgxOArg0klTSG

Score
10/10
xoristdiscoveryransomwareupx

Malware Config

Targets

    • Target

      bin/Encoder_Builder_v2.4.exe

    • Size

      883KB

    • MD5

      4c824eb8598f175d41e9a2ea06129890

    • SHA1

      64b57ea796956cbb60ce4fc702239cbc395aee6f

    • SHA256

      7a57d83ae7fde49cfd57e7d2753570306a09c6082bc82f75c89d23fa650a0011

    • SHA512

      122e509a3101a67d867f7a3653c8e5d2f838a04c7cb6a97af52e6b35ad709099a3b5940bca48be225ef0d8403537150f232f6137689180a6fd62affef5114845

    • SSDEEP

      24576:LIzxV583IWM6MV1KB7pgLB5rnjjUafpVMUXfnuq:8zT5oarn0KtX2q

    Score
    10/10
    xoristdiscoveryransomwareupx

    • Detected Xorist Ransomware

    • Xorist Ransomware

      Xorist is a ransomware first seen in 2020.

      ransomwarexorist

    • Xorist family

      xorist

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

    • Target

      src/crypter/crypter.exe

    • Size

      11KB

    • MD5

      d94bfb49259b0dc224580099d88899e5

    • SHA1

      33d595f97c39684562e9c3342d1477719e91678d

    • SHA256

      cee0058819af4ced052cc25032682e1739574080196e4727b8b390591d634003

    • SHA512

      a1be423b0a76696688ff0999b840e9bd80397506e0a921383c61f84e2dda9a2fc93d7745d7d9f304e7c440553dac4002141d47f27d7308746ca1948fcbc9c71f

    • SSDEEP

      192:N/TrG62a6B10k3g4fXk1iTV3HGc7EkpAqEjaGpsHcxUw4h+lfPtRMc:NebFNw4Pk1itKkpAjjJs6B40Wc

    Score
    3/10
    discovery
    behavioral2

MITRE ATT&CK Enterprise v15

Tasks