ioc[.]one - OSINT Cyber Threat Intelligence Database

Elastic Security prevents 100% of REvil ransomware samples

Tags

attack-pattern:

Data Model Dll Side-Loading - T1574.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Social Media - T1593.001 Dll Side-Loading - T1073 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	25a90ec1-f8b6-43f9-97e2-3c8a6b1a975e
Fingerprint	912249f8ed5eb64a
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 7, 2021, 6 p.m.
Added to db	Sept. 26, 2022, 9:31 a.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	Elastic Security prevents 100% of REvil ransomware samples
Title	Elastic Security prevents 100% of REvil ransomware samples
Detected Hints/Tags/Attributes	41/1/17

Source URLs

	Redirection	Url
Details	Source	https://www.elastic.co/blog/elastic-security-prevents-100-percent-of-revil-ransomware-samples?utm_content=&utm_medium=social&utm_source=twitter

URL Provider

Details	Provider	Source level domain
Details	elastic.co	www.elastic.co

Attributes

Details	Type	#Events	CTI	Value
Details	File	226		certutil.exe
Details	sha256	10		d55f983c994caa160ec63a59f6b4250fe67fb3e8c43a388aec60a4a6978e9f1e
Details	sha256	8		e2a24ab94f865caeacdf2c3ad015f31f23008ac6db8312c2cbfb32e4a5466ea2
Details	sha256	11		8dd620d9aeb35960bb766458c8890ede987c33d239cf730f93fe49d90ae759dd
Details	sha256	2		36a71c6ac77db619e18f701be47d79306459ff1550b0c92da47b8c46e2ec0752
Details	sha256	2		33bc14d231a4afaa18f06513766d5f69d8b88f1e697cd127d24fb4b72ad44c7a
Details	sha256	2		df2d6ef0450660aaae62c429610b964949812df2da1c57646fc29aa51c3f031e
Details	sha256	2		dc6b0e8c1e9c113f0364e1c8370060dee3fcbe25b667ddeca7623a95cd21411f
Details	sha256	2		d8353cfc5e696d3ae402c7c70565c1e7f31e49bcf74a6e12e5ab044f306b4b20
Details	sha256	3		d5ce6f36a06b0dc8ce8e7e2c9a53e66094c2adfc93cfac61dd09efe9ac45a75f
Details	sha256	2		cc0cdc6a3d843e22c98170713abf1d6ae06e8b5e34ed06ac3159adafe85e3bd6
Details	sha256	2		aae6e388e774180bc3eb96dad5d5bfefd63d0eb7124d68b6991701936801f1c7
Details	sha256	3		66490c59cb9630b53fa3fa7125b5c9511afde38edab4459065938c1974229ca8
Details	sha256	2		0496ca57e387b10dfdac809de8a4e039f68e8d66535d5d19ec76d39f7d0a4402
Details	sha256	2		81d0c71f8b282076cd93fb6bb5bfd3932422d033109e2c92572fc49e4abc2471
Details	sha256	2		8e846ed965bbc0270a6f58c5818e039ef2fb78def4d2bf82348ca786ea0cea4f
Details	sha256	2		1fe9b489c25bb23b04d9996e8107671edee69bd6f6def2fe7ece38a0fb35f98e