ASN1 Encoder
Tags
| attack-pattern: | Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 39e3a489-245f-412a-9a0c-e236fc00fcc4 |
| Fingerprint | 373c105f85641a3b |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 21, 2016, 9:43 p.m. |
| Added to db | Jan. 18, 2023, 7:51 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | ASN1 Encoder |
| Detected Hints/Tags/Attributes | 17/1/20 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | dxostywsduvmn6ra.onion |
|
| Details | Domain | 1 | dxostywsduvmn6ra.onion.cab |
|
| Details | Domain | 3 | nsis.sf.net |
|
| Details | Domain | 179 | www.torproject.org |
|
| Details | File | 2 | if.php |
|
| Details | File | 29 | onion.cab |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 2 | segui.exe |
|
| Details | File | 1 | %appdata%\db05dbac.exe |
|
| Details | File | 1 | %temp%\nske285.tmp |
|
| Details | File | 57 | system.dll |
|
| Details | File | 1 | %temp%\stockhorns.dll |
|
| Details | File | 76 | download.html |
|
| Details | File | 367 | readme.txt |
|
| Details | File | 1 | %appdata%\43eea007.exe |
|
| Details | File | 1 | 43eea007.exe |
|
| Details | File | 5 | exe.bat |
|
| Details | md5 | 1 | 6ad3135e40908d4bdbf24af6265f9b1b |
|
| Details | Url | 1 | http://dxostywsduvmn6ra.onion/if.php?iso=it&dt=nd&uid=[redacted]&pin=[redacted]&ref=6ad3135e40908d4bdbf24af6265f9b1b&cnt=1000 |
|
| Details | Url | 1 | http://dxostywsduvmn6ra.onion.cab/if.php?iso=it&dt=nd&uid=[redacted]&pin=[redacted]&ref=6ad3135e40908d4bdbf24af6265f9b1b&cnt=1000 |