ioc[.]one - OSINT Cyber Threat Intelligence Database

Al-Namrood, Al-Namrood 2.0

Tags

country:	India
attack-pattern:	Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	18291feb-d9bf-4f4e-b775-bb3b038e11e5
Fingerprint	fc11a0d628462a09
Analysis status	DONE
Considered CTI value	0
Text language
Published	Sept. 28, 2016, 12:35 p.m.
Added to db	Jan. 18, 2023, 7:51 p.m.
Last updated	Oct. 27, 2024, 4:45 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	Al-Namrood, Al-Namrood 2.0
Detected Hints/Tags/Attributes	14/2/28

Source URLs

	Redirection	Url
Details	Source	http://id-ransomware.blogspot.com/2016/09/al-namrood-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	Value
Details	Domain	20	inbox.ru
Details	Domain	246	mail.ru
Details	Domain	3	jabber.ua
Details	Domain	99	india.com
Details	Domain	37	xmpp.jp
Details	Domain	8	www.wikihow.com
Details	Domain	2	securejabber.me
Details	Domain	4	emsisoft.com
Details	Email	2	decryptioncompany@inbox.ru
Details	Email	2	fabianwosar@inbox.ru
Details	Email	1	id-17ad78ecsa[cryptservice@inbox.ru
Details	Email	3	cryptservice@inbox.ru
Details	Email	2	cryptsvc@mail.ru
Details	Email	2	cryptservice@jabber.ua
Details	Email	2	crypt64@mail.ru
Details	Email	2	crypt32@jabber.ua
Details	Email	2	crypt32@mail.ru
Details	Email	1	id-da15ae27gr[crypt32@mail.ru
Details	Email	2	kevinrobinson@inbox.ru
Details	Email	1	id-1a234567au[decryptgroup@inbox.ru
Details	Email	2	decryptgroup@inbox.ru
Details	Email	2	decryptgroup@india.com
Details	Email	2	decryptgroup@xmpp.jp
Details	Email	1	id-xxxxxxxxxx[cryptsvc@mail.ru
Details	Email	2	cryptsvc@securejabber.me
Details	File	33	read_me.txt
Details	File	1	infection.txt
Details	Url	2	http://www.wikihow.com/create-a-jabber-account