RagnarLocker Ransomware Indicators of Compromise
Common Information
| Type | Value |
|---|---|
| UUID | da0b3b32-8657-42c4-acca-e47134816b2c |
| Fingerprint | 61bbbe267f551e48a61b36939322727739c9fcad0e6b7d35ae3cd65184ca2b59 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 10, 2022, 1:52 p.m. |
| Added to db | April 14, 2024, 8:07 a.m. |
| Last updated | Aug. 31, 2024, 6:31 a.m. |
| Headline | RagnarLocker Ransomware Indicators of Compromise |
| Title | RagnarLocker Ransomware Indicators of Compromise |
| Detected Hints/Tags/Attributes | 0/0/26 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.ic3.gov/Media/News/2022/220307.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | prod12ms.com |
|
| Details | Domain | 1 | ssl-secure-com2048.com |
|
| Details | Domain | 1 | izugz.envisting.xyz |
|
| Details | Domain | 396 | protonmail.com |
|
| Details | Domain | 287 | yahoo.com |
|
| Details | Domain | 1175 | gmail.com |
|
| Details | Domain | 136 | mail.com |
|
| Details | Domain | 14 | list.ru |
|
| Details | Domain | 8 | www.stopransomware.gov |
|
| Details | Domain | 41 | stopransomware.gov |
|
| Details | Domain | 128 | www.fbi.gov |
|
| Details | Domain | 167 | www.ic3.gov |
|
| Details | 1 | shingxuan7110@protonmail.com |
||
| Details | 1 | scanjikoon@yahoo.com |
||
| Details | 1 | alexeyberdin17@gmail.com |
||
| Details | 1 | titan_fall572cool@gmail.com |
||
| Details | 1 | vivopsalrozor@yahoo.com |
||
| Details | 1 | gamarjoba@mail.com |
||
| Details | 1 | back.shadow98@gmail.com |
||
| Details | 1 | michael.shawn.brown2@gmail.com |
||
| Details | 1 | alexey_berdin@list.ru |
||
| Details | 1 | sh0d44n@gmail.com |
||
| Details | 1 | alexeyberdin437@gmail.com |
||
| Details | 1 | alexeyberdin38@gmail.com |
||
| Details | 1 | alexeyberbi@gmail.com |
||
| Details | File | 240 | wmic.exe |