UNKNOWN
Common Information
Type Value
UUID 0e2162aa-1c42-4a5f-8d0f-d1ef59cdc387
Fingerprint 9204bdd2640ccaaa
Analysis status IN_PROGRESS
Considered CTI value 0
Text language
Published None
Added to db Dec. 19, 2024, 3:07 p.m.
Last updated Dec. 25, 2024, 10:29 a.m.
Headline UNKNOWN
Title UNKNOWN
Detected Hints/Tags/Attributes 30/2/49
Source URLs
Attributes
Details Type #Events CTI Value
Details Domain 13
www.pcrisk.com
Details Domain 197
www.zdnet.com
Details Domain 17
labs.sentinelone.com
Details Domain 6752
163.com
Details File 1
勒索软件还会创建一个日志文件lck.log
Details File 1
wastedlocker将winsat.exe
Details File 1
和winmm.dll
Details File 43
winmm.dll
Details File 1
则1.doc
Details File 1
文件将被加密并重命名为1.doc
Details File 1
然后将创建一个名为1.jpg
Details File 1
因为与使用.txt
Details File 91
default.aspx
Details sha1 3
9292fa66c917bfa47e8012d302a69bec48e9b98c
Details sha1 3
be59c867da75e2a66b8c2519e950254f817cd4ad
Details sha1 4
70c0d6b0a8485df01ed893a7919009f099591083
Details sha1 4
4fed7eae00bfa21938e49f33b7c6794fd7d0750c
Details sha1 4
763d356d30e81d1cd15f6bc6a31f96181edb0b8f
Details sha1 3
e13f75f25f5830008a4830a75c8ccacb22cebe7b
Details sha1 3
b99090009cf758fa7551b197990494768cd58687
Details sha1 3
809fbd450e1a484a5af4ec05c345b2a7072723e7
Details sha1 3
e62d3a4fe0da1b1b8e9bcff3148becd6d02bcb07
Details sha1 4
91b2bf44b1f9282c09f07f16631deaa3ad9d956d
Details sha1 3
f25f0b369a355f30f5e11ac11a7f644bcfefd963
Details sha256 7
ed0632acb266a4ec3f51dd803c8025bccd654e53c64eb613e203c590897079b3
Details sha256 7
e3bf41de3a7edf556d43b6196652aa036e48a602bb3f7c98af9dae992222a8eb
Details sha256 9
bcdac1a2b67e2b47f8129814dca3bcf7d55404757eb09f1c3103f57da3153ec8
Details sha256 5
aa05e7a187ddec2e11fc1c9eafe61408d085b0ab6cd12caeaf531c9dca129772
Details sha256 4
9056ec1ee8d1b0124110e9798700e473fb7c31bc0656d9fc83ed0ac241746064
Details sha256 7
8897db876553f942b2eb4005f8475a232bafb82a50ca7761a621842e894a3d80
Details sha256 7
887aac61771af200f7e58bf0d02cb96d9befa11deda4e448f0a700ccb186ce9d
Details sha256 4
97a1e14988672f7381d54e70785994ed45c2efe3da37e07be251a627f25078a7
Details sha256 5
85f391ecd480711401f6da2f371156f995dd5cff7580f37791e79e62b91fd9eb
Details sha256 5
7a45a4ae68992e5be784b4a6da7acd98dc28281fe238f22c1f7c1d85a90d144a
Details sha256 8
5cd04805f9753ca08b82e88c27bf5426d1d356bb26b281885573051048911367
Details MITRE ATT&CK Techniques 116
T1564
Details MITRE ATT&CK Techniques 82
T1569
Details MITRE ATT&CK Techniques 87
T1548
Details MITRE ATT&CK Techniques 254
T1106
Details MITRE ATT&CK Techniques 743
T1059
Details MITRE ATT&CK Techniques 270
T1222
Details MITRE ATT&CK Techniques 522
T1486
Details MITRE ATT&CK Techniques 302
T1490
Details Url 1
https://www.pcrisk.com/removal-guides/18227-wastedlocker-ransomware
Details Url 9
https://blog.fox-it.com/2020/06/23/wastedlocker-a-new-ransomware-variant-developed-by-the-evil-corp-group
Details Url 1
https://www.zdnet.com/article/new-wastedlocker-ransomware-demands-payments-of-millions-of-usd
Details Url 1
https://newsroom.garmin.com/newsroom/press-release-details/2020/garmin-issues-statement-on-recent-outage/default.aspx
Details Url 2
https://labs.sentinelone.com/wastedlocker-ransomware-abusing-ads-and-ntfs-file-attributes
Details Url 1
https://www.bleepingcomputer.com/news/security/evil-corp-blocked-from-deploying-ransomware-on-30-major-us-firms