Technical Analysis of CryptNet Ransomware
Tags
| attack-pattern: | Data Python - T1059.006 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 06a464d3-3821-4c6f-9bd0-ee42a724c6b8 |
| Fingerprint | bc1fb27a842cbd1c |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Sept. 18, 2023, midnight |
| Added to db | Nov. 19, 2023, 3:54 a.m. |
| Last updated | Nov. 17, 2024, 6:49 p.m. |
| Headline | Zscaler Blog |
| Title | Technical Analysis of CryptNet Ransomware |
| Detected Hints/Tags/Attributes | 67/1/18 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 406 | ✔ | Security Research | Blog Category Feed | https://www.zscaler.com/blogs/feeds/security-research | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 179 | www.torproject.org |
|
| Details | Domain | 1 | cryptr3fmuv4di5uiczofjuypopr63x2gltlsvhur2ump4ebru2xd3yd.onion |
|
| Details | File | 351 | recycle.bin |
|
| Details | File | 101 | iconcache.db |
|
| Details | File | 243 | autorun.inf |
|
| Details | File | 143 | thumbs.db |
|
| Details | File | 120 | boot.ini |
|
| Details | File | 90 | bootfont.bin |
|
| Details | File | 66 | ntuser.ini |
|
| Details | File | 196 | desktop.ini |
|
| Details | File | 193 | ntuser.dat |
|
| Details | File | 131 | tar.gz |
|
| Details | File | 19 | tar.xz |
|
| Details | File | 100 | ntuser.dat.log |
|
| Details | File | 99 | bootsect.bak |
|
| Details | sha256 | 1 | 2e37320ed43e99835caa1b851e963ebbf153f16cbe395f259bd2200d14c7b775 |
|
| Details | Url | 24 | https://www.torproject.org/download |
|
| Details | Url | 1 | http://cryptr3fmuv4di5uiczofjuypopr63x2gltlsvhur2ump4ebru2xd3yd.onion |