ioc[.]one - OSINT Cyber Threat Intelligence Database

Kryptina RaaS | From Unsellable Cast-Off to Enterprise Ransomware

Tags

country:	Russia
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Dns - T1071.004 Dns - T1590.002 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Brute Force - T1110 Hypervisor - T1062 Powershell - T1086 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	08ae5baa-266f-4996-939c-e534a946958d
Fingerprint	bd1e8abb8515a684
Analysis status	DONE
Considered CTI value	2
Text language
Published	Sept. 23, 2024, 10:01 a.m.
Added to db	Sept. 23, 2024, 12:40 p.m.
Last updated	Nov. 17, 2024, 6:31 p.m.
Headline	Kryptina RaaS \| From Unsellable Cast-Off to Enterprise Ransomware
Title	Kryptina RaaS \| From Unsellable Cast-Off to Enterprise Ransomware
Detected Hints/Tags/Attributes	63/3/53

Source URLs

	Redirection	Url
Details	Source	https://malware.news/t/kryptina-raas-from-unsellable-cast-off-to-enterprise-ransomware/86639

URL Provider

Details	Provider	Source level domain
Details	malware.news	malware.news

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	158	✔	Malware Analysis, News and Indicators - Latest topics	https://malware.news/latest.rss	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	23	cve-2024-21338
Details	Domain	2	docs.md
Details	Domain	2	klapr.zip
Details	Domain	3	grovik71.theweb.place
Details	Domain	124	www.sentinelone.com
Details	File	3	scripting_demo.py
Details	File	153	config.json
Details	File	2	klapr.zip
Details	File	5	klapr.bat
Details	File	4	s.ps1
Details	File	2	application.jar
Details	File	3	id.exe
Details	File	2	jre-8u401-windows-x64.exe
Details	File	3	red.exe
Details	File	2	msiedge.exe
Details	sha1	3	d46fbc4a57dce813574ee312001eaad0aa4e52de
Details	sha1	2	fbb89744bc9f65719bd5415dcf1ec9a74b24254e
Details	sha1	2	55dc4541b72a804a7edf324d6a388569a68a2986
Details	sha1	2	78c27c7ac1da97dc822b4af7be5f15d68f9c5e4f
Details	sha1	2	d94f890a8c92cbce50d89da2792bcfc24894c004
Details	sha1	2	16ec82ac2caf0c2e4812a636dbff4bd8ef84d5c3
Details	sha1	2	66cab82b64fbb03fecf7ca7f9ed295404a9bfe2b
Details	sha1	2	0bbd9a8ddbb68e2658ea4c0a4106c7406a392098
Details	sha1	3	43377911601247920dc15e9b22eda4c57cb9e743
Details	sha1	3	5cf67c0a1fa06101232437bee5111fefcd8e2df4
Details	sha1	3	0f1aea2cf0c9f2de55d2b920618a5948c5e5e119
Details	sha1	3	dc3f98dded6c1f1e363db6752c512e01ac9433f3
Details	sha1	3	c20e8d536804cf97584eec93d9a89c09541155bc
Details	sha1	3	29936b1aa952a89905bf0f7b7053515fd72d8c5c
Details	sha1	3	0b9d2895d29f7d553e5613266c2319e10afdda78
Details	sha1	3	0de92527430dc0794694787678294509964422e6
Details	sha1	3	0e83d023b9f6c34ab029206f1f11b3457171a30a
Details	sha1	3	0f632f8e59b8c8b99241d0fd5ff802f31a3650cd
Details	sha1	3	1379a1b08f938f9a53082150d53efadb2ad37ae5
Details	sha1	3	21bacf8daa45717e87a39842ec33ad61d9d79cfe
Details	sha1	3	262497702d6b7f7d4af73a90cb7d0e930f9ec355
Details	sha1	3	2b3fc20c4521848f33edcf55ed3d508811c42861
Details	sha1	3	341552a8650d2bdad5f3ec12e333e3153172ee66
Details	sha1	3	58552820ba2271e5c3a76b30bd3a07144232b9b3
Details	sha1	3	88a039be03abc7305db724079e1a85810088f900
Details	sha1	3	9050419cbecc88be7a06ea823e270db16f47c1ea
Details	sha1	4	93ef3578f9c3db304a979b0d9d36234396ec6ac9
Details	sha1	3	a1a8922702ffa8c74aba9782cca90c939dfb15bf
Details	sha1	3	b07c725edb65a879d392cd961b4cb6a876e40e2d
Details	sha1	3	b27d291596cc890d283e0d3a3e08907c47e3d1cc
Details	sha1	3	b768ba3e6e03a77004539ae999bb2ae7b1f12c62
Details	sha1	3	c4d988135e960e88e7acfae79a45c20e100984b6
Details	sha1	3	d618a9655985c33e69a4713ebe39d473a4d58cde
Details	sha1	3	ee3cd3a749f5146cf6d4b36ee87913c51b9bfe93
Details	sha1	3	ef2565c789316612d8103056cec25f77674d78d1
Details	sha1	3	f17d9b3cd2ba1dea125d2e1a4aeafc6d4d8f12dc
Details	IPv4	3	185.73.125.6
Details	Url	1	https://www.sentinelone.com/labs/kryptina-raas-from-unsellable-cast-off-to-enterprise-ransomware