ioc[.]one - OSINT Cyber Threat Intelligence Database

Kraken Cryptor Ransomware Gains Popularity Among Cybercriminals

Show in Graph

Common Information

Type	Value
UUID	f585bf65-370f-4c8b-965f-deadb85492f1
Fingerprint	676afd9af36ac374357d3197034893242e945e6967b5175a8d440fb9a9186852
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 30, 2018, 5:12 p.m.
Added to db	March 10, 2024, 12:49 a.m.
Last updated	Aug. 30, 2024, 10:26 p.m.
Headline	Kraken Cryptor Ransomware Gains Popularity Among Cybercriminals
Title	Kraken Cryptor Ransomware Gains Popularity Among Cybercriminals
Detected Hints/Tags/Attributes	108/3/71

Source URLs

	Redirection	Url
Details	Source	https://go.recordedfuture.com/hubfs/reports/cta-2018-1030.pdf

URL Provider

Details	Provider	Source level domain
Details	recordedfuture.com	go.recordedfuture.com

Attributes

Details	Type	#Events	Value
Details	Domain	546	www.recordedfuture.com
Details	Domain	34	exploit.im
Details	Domain	396	protonmail.com
Details	Domain	2	kraken656kn6wyyx.onion
Details	Domain	3	blasze.tk
Details	Domain	162	localbitcoins.com
Details	Domain	3	bestbitcoinexchange.io
Details	Domain	1	uploadfiles.io
Details	Domain	7	memeware.net
Details	Domain	24	420blaze.it
Details	Domain	30	bitmessage.ch
Details	Domain	144	cock.li
Details	Domain	179	hotmail.com
Details	Email	2	thiswaskraken@exploit.im
Details	Email	2	teamxsupport@protonmail.com
Details	Email	2	onionhelp@memeware.net
Details	Email	2	nikolatesla@cock.li
Details	Email	2	nikolateslaproton@protonmail.com
Details	Email	4	powerhacker03@hotmail.com
Details	File	409	c:\windows\system32\cmd.exe
Details	File	1	krakentemp0000.exe
Details	File	14	sdelete.exe
Details	File	29	decryptor.exe
Details	File	4	private.txt
Details	File	2	c:\programdata\safe.exe
Details	File	2	c:\programdata\eventlog.txt
Details	File	17	files.html
Details	File	5	kraken.exe
Details	File	3	krakenc.exe
Details	File	3	release.bat
Details	File	3	sdelete64.exe
Details	File	3	cabxxxx.exe
Details	File	3	tarxxxx.exe
Details	File	3	superantispywares.exe
Details	File	1	ca7835865133121788bb07fb49cedad3e9601656.exe
Details	File	2	krakencryptor.exe
Details	File	2	73a94429b321dfc_qimawc2k2w.exe
Details	File	2	auservice.exe
Details	File	54	file.exe
Details	File	1	bbdefac4e59207.exe
Details	File	22	build.exe
Details	md5	1	e2251a00f5d025ee89228720dc5c2f65
Details	md5	1	387157f1d07f88c61659faa3f55cdc76
Details	md5	1	4d674eede4576eb6d2847bd7ea4f9ba1
Details	md5	1	aea691638b9cb83b606375c8627939c1
Details	md5	1	14fd33d833b37fdd0df997f5e108c43f
Details	md5	1	573c2a8d18a07156b6a79cd34fa4eaaa
Details	md5	1	1c2bd3bcb860d67bce367a3f703f64ea
Details	md5	1	63f0fbfd68891bd869cce6f0617dfc8d
Details	md5	1	494e850936b4a012fec675eeeeea4a88
Details	md5	1	d60a5d6d80bb8079629c957e33335457
Details	md5	1	1564f9d385a7a91bd82d3a58cb0524c9
Details	md5	1	7bcb49c6dde08f15496f0b274016d00c
Details	md5	1	6db9f96b1c56bcb56bc88904683465da
Details	md5	1	b214a9cd3c2fc0ccecc8d1e52b4f5020
Details	md5	1	cd99101b1a02e83b903be204bd8bb302
Details	md5	1	732eabe16e1e499fb19e75877f7a477e
Details	md5	1	3f8bd126d092c721ce949dd3a51c6511
Details	md5	1	8f4b317224e618c75c19720f265b4b78
Details	md5	1	206ae284393548e05c086f8247f3420c
Details	md5	1	0faf2fb2ad4c1bd87dc44570524ee8d5
Details	md5	1	02131c36e592c6c943022c49c4f8d592
Details	md5	1	438dafa01215e854bdab81996788c0c7
Details	md5	22	f34d5f2d4577ed6d9ceec516c1f5a744
Details	sha1	2	ca7835865133121788bb07fb49cedad3e9601656
Details	sha1	1	af35055f23da42eb16096061f1e3e167fac2c64f
Details	sha1	1	2284c32309908d3f7ffe1f9b30889a9c04a4b936
Details	sha1	1	4541b8ab666dff77aa07831561788e6c41e7a0bb
Details	sha1	2	1c6f0d5b7a7177f67a8b78ea0205819e0563120d
Details	IPv4	1441	127.0.0.1
Details	Pdb	2	c:\users\krypton\source\repos\uac\uac\obj\\release\uac.pdb