Vortex
Common Information
| Type | Value |
|---|---|
| UUID | 2072d37c-7cef-40ce-932b-69fb0bff84b1 |
| Fingerprint | 3625519f4564027a |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 9, 2017, 1:05 p.m. |
| Added to db | Sept. 26, 2022, 9:32 a.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | Vortex |
| Detected Hints/Tags/Attributes | 28/2/34 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 14 | openmailbox.org |
|
| Details | Domain | 84 | airmail.cc |
|
| Details | Domain | 1 | eslamx.com |
|
| Details | Domain | 1 | ethcardoza.com |
|
| Details | Domain | 2 | www.sethcardoza.com |
|
| Details | Domain | 129 | api.ipify.org |
|
| Details | Domain | 1 | wielkijopl.temp.swtest.ru |
|
| Details | Domain | 911 | any.run |
|
| Details | Domain | 1 | dantall.bdl.pl |
|
| Details | Domain | 1 | v4.ident.me |
|
| Details | Domain | 1 | e-xbau.pl |
|
| Details | Domain | 16 | goat.si |
|
| Details | Domain | 101 | cert.pl |
|
| Details | 2 | rsapl@openmailbox.org |
||
| Details | 1 | poiskiransom@airmail.cc |
||
| Details | 1 | hc9@goat.si |
||
| Details | File | 1 | odzszyfruj-dane.txt |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 2 | aesxwin.exe |
|
| Details | File | 1 | polish.exe |
|
| Details | File | 2 | menadzerdzwiekuhd2.exe |
|
| Details | File | 3 | doc.js |
|
| Details | File | 1 | jak-odzyskac-pliiki.txt |
|
| Details | File | 1 | bdl.pl |
|
| Details | File | 1 | e-xbau.pl |
|
| Details | File | 3 | i.txt |
|
| Details | File | 3 | 2.pl |
|
| Details | File | 3 | wind.exe |
|
| Details | File | 1 | 20102017_150240.log |
|
| Details | File | 1 | asustpcenter.exe |
|
| Details | File | 1 | zamowienia.doc |
|
| Details | File | 1 | plikach.txt |
|
| Details | File | 99 | cert.pl |
|
| Details | Mandiant Temporary Group Assumption | 8 | TEMP.SWTEST |