Clop Ransomware
Common Information
| Type | Value |
|---|---|
| UUID | 9f80327c-a3f9-49a9-93e6-4f735bfcce46 |
| Fingerprint | cf43d21a04ae5cd57ffddb617fa5b4255aa6a82ef3b0b7d2e07d00f3240052a3 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | June 8, 2023, 10:18 a.m. |
| Added to db | Oct. 18, 2024, 5:04 p.m. |
| Last updated | Oct. 18, 2024, 5:07 p.m. |
| Headline | Clop Ransomware |
| Title | Clop Ransomware |
| Detected Hints/Tags/Attributes | 117/4/182 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 1 | cve-2023-343621 |
|
| Details | CVE | 243 | cve-2023-34362 |
|
| Details | CVE | 17 | cve-2021-35211 |
|
| Details | CVE | 50 | cve-2022-47986 |
|
| Details | CVE | 29 | cve-2022-31199 |
|
| Details | CVE | 115 | cve-2023-0669 |
|
| Details | CVE | 5 | cve-2022-3199 |
|
| Details | Domain | 42 | quorumcyber.com |
|
| Details | Domain | 5490 | nist.gov |
|
| Details | Domain | 78 | socradar.io |
|
| Details | Domain | 1 | bak0-store.com |
|
| Details | Domain | 1 | xbox-ms-store-debug.com |
|
| Details | Domain | 1 | ms-pipes-service.com |
|
| Details | Domain | 1 | conversepharmagroup.com |
|
| Details | Domain | 2 | enssecurity.com |
|
| Details | Domain | 2 | ferran-services.com |
|
| Details | Domain | 2 | loeschgroup.de |
|
| Details | Domain | 2 | modetransportation.com |
|
| Details | Domain | 1 | ms-debug-services.com |
|
| Details | Domain | 1 | res-backup.com |
|
| Details | Domain | 2 | suntecktts.com |
|
| Details | Domain | 2 | vivalia.be |
|
| Details | Domain | 2 | applexus.com |
|
| Details | Domain | 2 | atapcoproperties.com |
|
| Details | Domain | 2 | bakkerheftrucks.com |
|
| Details | Domain | 1 | baltholding.eu |
|
| Details | Domain | 2 | boltburdonkemp.co.uk |
|
| Details | Domain | 1 | caracoltv.com |
|
| Details | Domain | 1 | empressems.com |
|
| Details | Domain | 2 | fed-gmbh.de |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | Domain | 5 | goldenbay.su |
|
| Details | Domain | 396 | protonmail.com |
|
| Details | Domain | 6 | royalmail.su |
|
| Details | Domain | 5 | graylegion.su |
|
| Details | Domain | 6 | eqaltech.su |
|
| Details | 4 | managersmaers@tutanota.com |
||
| Details | 5 | unlock@goldenbay.su |
||
| Details | 4 | kensgilbomet@protonmail.com |
||
| Details | 6 | unlock@royalmail.su |
||
| Details | 4 | servicedigilogos@protonmail.com |
||
| Details | 5 | unlock@graylegion.su |
||
| Details | 6 | unlock@eqaltech.su |
||
| Details | sha256 | 4 | 09d6dab9b70a74f61c41eaa485b37de9a40c86b6d2eae7413db11b4e6a8256ef |
|
| Details | sha256 | 1 | a9741b16f4169f56ae0f2e49c87f3c5360ed5ab4370e6d16bd86179999f11795 |
|
| Details | sha256 | 4 | 3320f11728458d01eef62e10e48897ec1c2277c1fe1aa2d471a16b4dccfc1207 |
|
| Details | sha256 | 2 | 46cd508b7e77bb2c1d47f7fef0042a13c516f8163f9373ef9dfac180131c65ed |
|
| Details | sha256 | 1 | 0778c67835cce4819fecc56c1059c791c0cf023a3a2c4db0ac696d1c3966f9e2 |
|
| Details | sha256 | 2 | 94b76ce34e5493bb59586b41f41b23baa07a55f2397e80775573714b1311103c |
|
| Details | sha256 | 3 | 31829479fa5b094ca3cfd0222e61295fff4821b778e5a7bd228b0c31f8a3cc44 |
|
| Details | sha256 | 3 | 35b0b54d13f50571239732421818c682fbe83075a4a961b20a7570610348aecc |
|
| Details | sha256 | 3 | 343cb2d5900f5fe4abd5442a4a18541753fbb6ca5ff4ee7f2c312ed96e413335 |
|
| Details | sha256 | 2 | f1b8c7b2d20040f1dd9728de9808925fdcf035a1a289d42f63e5faa967f50664 |
|
| Details | sha256 | 1 | 22d90ad1a0e5220ec0772918fa6efdb54604bddab1d5f15156ead1acd5d7aa37 |
|
| Details | sha256 | 1 | 3bc985db556b3a73e158d21f4e859aac50ef5ee5cc9c3a367e5161402a02fea9 |
|
| Details | sha256 | 1 | 4e8240519715af4bc4f172e30fcd1ef5d815664bbcdf532a4d80a9a30dab7122 |
|
| Details | sha256 | 1 | 64de5359969b2dc8d3aa4d5fd43409defda2c5794a4e89ca7da9396cf4edf279 |
|
| Details | sha256 | 1 | 8c2420ec60f4e6eb270fe4221e361b756ca03c78dbc6715bc9e0d8bfc3a17333 |
|
| Details | sha256 | 1 | b55f553516168b135f77f0ff8470efece41900dbccf63b3587a2a967fc3b091a |
|
| Details | sha256 | 1 | d5816b5fdda44252a92b098e997c3e39c58085b58afab2b785315a80c60e857f |
|
| Details | sha256 | 1 | e03a9d03a1aca2b0eb442c9f6d43148da39ac055416a12b791c2c31916f89503 |
|
| Details | sha256 | 1 | ed3dfa9f2452537d378ead320e1506d392d3f91557d8c52714dfd6024176cf73 |
|
| Details | sha256 | 1 | 83d86bf2b1ccf1fa0d4eebad2180ee8a2d1312988f9949c769132e81234ea970 |
|
| Details | sha256 | 6 | 0b3220b11698b1436d1d866ac07cc90018e59884e91a8cb71ef8924309f1e0e9 |
|
| Details | sha256 | 6 | 110e301d3b5019177728010202c8096824829c0b11bb0dc0bff55547ead18286 |
|
| Details | sha256 | 6 | 1826268249e1ea58275328102a5a8d158d36b4fd312009e4a2526f0bfbc30de2 |
|
| Details | sha256 | 6 | 2ccf7e42afd3f6bf845865c74b2e01e2046e541bb633d037b05bd1cdb296fa59 |
|
| Details | sha256 | 5 | 98a30c7251cf622bd4abce92ab527c3f233b817a57519c2dd2bf8e3d3ccb7db8 |
|
| Details | sha256 | 5 | a8f6c1ccba662a908ef7b0cb3cc59c2d1c9e2cbbe1866937da81c4c616e68986 |
|
| Details | sha256 | 5 | b5ef11d04604c9145e4fe1bedaeb52f2c2345703d52115a5bf11ea56d7fb6b03 |
|
| Details | sha256 | 5 | cec425b3383890b63f5022054c396f6d510fae436041add935cd6ce42033f621 |
|
| Details | sha256 | 5 | ed0c3e75b7ac2587a5892ca951707b4e0dd9c8b18aaf8590c24720d73aa6b90c |
|
| Details | sha256 | 6 | 0ea05169d111415903a1098110c34cdbbd390c23016cd4e179dd9ef507104495 |
|
| Details | sha256 | 7 | 2413b5d0750c23b07999ec33a5b4930be224b661aaf290a0118db803f31acbc5 |
|
| Details | sha256 | 6 | 348e435196dd795e1ec31169bd111c7ec964e5a6ab525a562b17f10de0ab031d |
|
| Details | sha256 | 6 | 387cee566aedbafa8c114ed1c6b98d8b9b65e9f178cf2f6ae2f5ac441082747a |
|
| Details | sha256 | 4 | 38e69f4a6d2e81f28ed2dc6df0daf31e73ea365bd2cfc90ebc31441404cca264 |
|
| Details | sha256 | 6 | 3a977446ed70b02864ef8cfa3135d8b134c93ef868a4cc0aa5d3c2a74545725b |
|
| Details | sha256 | 6 | 3ab73ea9aebf271e5f3ed701286701d0be688bf7ad4fb276cb4fbe35c8af8409 |
|
| Details | sha256 | 4 | 3c0dbda8a5500367c22ca224919bfc87d725d890756222c8066933286f26494c |
|
| Details | sha256 | 6 | 4359aead416b1b2df8ad9e53c497806403a2253b7e13c03317fc08ad3b0b95bf |
|
| Details | sha256 | 5 | 48367d94ccb4411f15d7ef9c455c92125f3ad812f2363c4d2e949ce1b615429a |
|
| Details | sha256 | 6 | 5b566de1aa4b2f79f579cdac6283b33e98fdc8c1cfa6211a787f8156848d67ff |
|
| Details | sha256 | 7 | 6015fed13c5510bbb89b0a5302c8b95a5b811982ff6de9930725c4630ec4011d |
|
| Details | sha256 | 6 | 702421bcee1785d93271d311f0203da34cc936317e299575b06503945a6ea1e0 |
|
| Details | sha256 | 3 | 769f77aace5eed4717c7d3142989b53bd5bac9297a6e11b2c588c3989b397e6b |
|
| Details | sha256 | 4 | 7c39499dd3b0b283b242f7b7996205a9b3cf8bd5c943ef6766992204d46ec5f1 |
|
| Details | sha256 | 4 | 93137272f3654d56b9ce63bec2e40dd816c82fb6bad9985bed477f17999a47db |
|
| Details | sha256 | 6 | 9d1723777de67bc7e11678db800d2a32de3bcd6c40a629cd165e3f7bbace8ead |
|
| Details | sha256 | 6 | 9e89d9f045664996067a05610ea2b0ad4f7f502f73d84321fb07861348fdc24a |
|
| Details | sha256 | 5 | a1269294254e958e0e58fc0fe887ebbc4201d5c266557f09c3f37542bd6d53d7 |
|
| Details | sha256 | 6 | b1c299a9fe6076f370178de7b808f36135df16c4e438ef6453a39565ff2ec272 |
|
| Details | sha256 | 5 | b9a0baf82feb08e42fa6ca53e9ec379e79fbe8362a7dac6150eb39c2d33d94ad |
|
| Details | sha256 | 4 | bdd4fa8e97e5e6eaaac8d6178f1cf4c324b9c59fc276fd6b368e811b327ccf8b |
|
| Details | sha256 | 5 | c56bcb513248885673645ff1df44d3661a75cfacdce485535da898aa9ba320d4 |
|
| Details | sha256 | 5 | c77438e8657518221613fbce451c664a75f05beea2184a3ae67f30ea71d34f37 |
|
| Details | sha256 | 6 | cf23ea0d63b4c4c348865cefd70c35727ea8c82ba86d56635e488d816e60ea45 |
|
| Details | sha256 | 5 | d477ec94e522b8d741f46b2c00291da05c72d21c359244ccb1c211c12b635899 |
|
| Details | sha256 | 6 | d49cf23d83b2743c573ba383bf6f3c28da41ac5f745cde41ef8cd1344528c195 |
|
| Details | sha256 | 5 | daaa102d82550f97642887514093c98ccd51735e025995c2cc14718330a856f4 |
|
| Details | sha256 | 6 | e8012a15b6f6b404a33f293205b602ece486d01337b8b3ec331cd99ccadb562e |
|
| Details | sha256 | 5 | ea433739fb708f5d25c937925e499c8d2228bf245653ee89a6f3d26a5fd00b7a |
|
| Details | sha256 | 5 | f0d85b65b9f6942c75271209138ab24a73da29a06bc6cc4faeddcb825058c09d |
|
| Details | IPv4 | 3 | 45.227.253.102 |
|
| Details | IPv4 | 13 | 138.197.152.201 |
|
| Details | IPv4 | 15 | 209.97.137.33 |
|
| Details | IPv4 | 14 | 5.252.191.0 |
|
| Details | IPv4 | 15 | 148.113.152.144 |
|
| Details | IPv4 | 15 | 89.39.105.108 |
|
| Details | IPv4 | 5 | 5.252.189.0 |
|
| Details | IPv4 | 6 | 5.252.190.0 |
|
| Details | IPv4 | 7 | 198.27.75.110 |
|
| Details | IPv4 | 7 | 209.222.103.170 |
|
| Details | IPv4 | 7 | 84.234.96.104 |
|
| Details | IPv4 | 1 | 4.194.222.107 |
|
| Details | IPv4 | 4 | 146.0.77.141 |
|
| Details | IPv4 | 4 | 146.0.77.155 |
|
| Details | IPv4 | 4 | 146.0.77.183 |
|
| Details | IPv4 | 4 | 162.244.34.26 |
|
| Details | IPv4 | 4 | 162.244.35.6 |
|
| Details | IPv4 | 4 | 179.60.150.143 |
|
| Details | IPv4 | 4 | 185.104.194.156 |
|
| Details | IPv4 | 4 | 185.104.194.24 |
|
| Details | IPv4 | 4 | 185.104.194.40 |
|
| Details | IPv4 | 4 | 185.117.88.17 |
|
| Details | IPv4 | 4 | 185.162.128.75 |
|
| Details | IPv4 | 4 | 185.174.100.215 |
|
| Details | IPv4 | 4 | 185.174.100.250 |
|
| Details | IPv4 | 4 | 185.181.229.240 |
|
| Details | IPv4 | 4 | 185.181.229.73 |
|
| Details | IPv4 | 4 | 185.183.32.122 |
|
| Details | IPv4 | 4 | 185.185.50.172 |
|
| Details | IPv4 | 4 | 188.241.58.244 |
|
| Details | IPv4 | 4 | 193.169.245.79 |
|
| Details | IPv4 | 4 | 194.33.40.103 |
|
| Details | IPv4 | 4 | 194.33.40.104 |
|
| Details | IPv4 | 3 | 194.33.40.1 |
|
| Details | IPv4 | 4 | 198.12.76.214 |
|
| Details | IPv4 | 4 | 206.221.182.106 |
|
| Details | IPv4 | 4 | 209.127.116.122 |
|
| Details | IPv4 | 4 | 209.127.4.22 |
|
| Details | IPv4 | 4 | 45.227.253.133 |
|
| Details | IPv4 | 4 | 45.227.253.147 |
|
| Details | IPv4 | 4 | 45.227.253.50 |
|
| Details | IPv4 | 4 | 45.227.253.6 |
|
| Details | IPv4 | 4 | 45.227.253.82 |
|
| Details | IPv4 | 4 | 45.56.165.248 |
|
| Details | IPv4 | 4 | 5.149.248.68 |
|
| Details | IPv4 | 4 | 5.149.250.74 |
|
| Details | IPv4 | 4 | 5.149.250.92 |
|
| Details | IPv4 | 4 | 5.188.86.114 |
|
| Details | IPv4 | 4 | 5.188.86.250 |
|
| Details | IPv4 | 4 | 5.188.87.194 |
|
| Details | IPv4 | 4 | 5.188.87.226 |
|
| Details | IPv4 | 4 | 5.188.87.27 |
|
| Details | IPv4 | 4 | 5.252.23.116 |
|
| Details | IPv4 | 4 | 5.252.25.88 |
|
| Details | IPv4 | 4 | 5.34.180.205 |
|
| Details | IPv4 | 4 | 62.112.11.57 |
|
| Details | IPv4 | 4 | 62.182.82.19 |
|
| Details | IPv4 | 4 | 62.182.85.234 |
|
| Details | IPv4 | 4 | 66.85.26.215 |
|
| Details | IPv4 | 4 | 66.85.26.234 |
|
| Details | IPv4 | 4 | 66.85.26.248 |
|
| Details | IPv4 | 4 | 79.141.160.78 |
|
| Details | IPv4 | 4 | 79.141.160.83 |
|
| Details | IPv4 | 4 | 84.234.96.31 |
|
| Details | IPv4 | 4 | 89.39.104.118 |
|
| Details | IPv4 | 4 | 91.202.4.76 |
|
| Details | IPv4 | 4 | 91.222.174.95 |
|
| Details | IPv4 | 4 | 91.229.76.187 |
|
| Details | IPv4 | 4 | 93.190.142.131 |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 97 | T1497.001 |
|
| Details | MITRE ATT&CK Techniques | 55 | T1553.002 |
|
| Details | MITRE ATT&CK Techniques | 15 | T1406.002 |
|
| Details | MITRE ATT&CK Techniques | 176 | T1135 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 442 | T1071.001 |
|
| Details | MITRE ATT&CK Techniques | 472 | T1486 |
|
| Details | Threat Actor Identifier - FIN | 127 | FIN11 |