Blind
Tags
| attack-pattern: | Data Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 22e72f9c-7183-4963-b831-e5099eef3462 |
| Fingerprint | 16b5593e10ff3ebb |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Sept. 15, 2017, 10:16 a.m. |
| Added to db | Jan. 18, 2023, 7:53 p.m. |
| Last updated | Nov. 17, 2024, 5:56 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | Blind |
| Detected Hints/Tags/Attributes | 14/1/19 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://id-ransomware.blogspot.com/2017/09/blind-ransomware.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 144 | cock.li |
|
| Details | Domain | 162 | localbitcoins.com |
|
| Details | Domain | 68 | www.coindesk.com |
|
| Details | Domain | 24 | rape.lol |
|
| Details | Domain | 84 | airmail.cc |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | 1 | blind@cock.li |
||
| Details | 1 | my_document.[blind@cock.li |
||
| Details | 1 | kill@rape.lol |
||
| Details | 2 | supp01@airmail.cc |
||
| Details | 2 | supportdecrypt2@cock.li |
||
| Details | 2 | skeleton@rape.lol |
||
| Details | 1 | atilla666@tutanota.com |
||
| Details | File | 1 | netcache64.sys |
|
| Details | File | 1 | %appdata%\netcache64.sys |
|
| Details | File | 5 | how_decrypt_files.txt |
|
| Details | File | 2 | skeleton.exe |
|
| Details | Url | 52 | https://localbitcoins.com/buy_bitcoins |
|
| Details | Url | 41 | http://www.coindesk.com/information/how-can-i-buy-bitcoins |