CryptoHost
Tags
attack-pattern: | Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | 1df72731-d738-4a5c-b08a-33f5b343ca79 |
Fingerprint | b77f527fe0f71e7f |
Analysis status | DONE |
Considered CTI value | 1 |
Text language | |
Published | April 5, 2016, 10:56 p.m. |
Added to db | Jan. 18, 2023, 7:50 p.m. |
Last updated | Sept. 2, 2024, 4:22 a.m. |
Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
Title | CryptoHost |
Detected Hints/Tags/Attributes | 28/1/10 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | File | 2 | cryptohost.exe |
|
Details | File | 1 | %temp%\utorrent.exe |
|
Details | File | 4 | utorrent.exe |
|
Details | File | 1 | %appdata%\cryptohost.exe |
|
Details | File | 1 | %appdata%\processor.exe |
|
Details | sha1 | 1 | 3854de6500c05adaa539579617ea3725baae2c57 |
|
Details | Windows Registry Key | 2 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot |
|
Details | Windows Registry Key | 1 | HKCU\Software\Classes\FalconBetaAccount |
|
Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Windows\CurrentVersion\Run\software |
|
Details | Windows Registry Key | 3 | HKCU\Software\VB |