ioc[.]one - OSINT Cyber Threat Intelligence Database

XiaoBa 2.0

Tags

attack-pattern:

Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	3e1ab9e3-118d-4545-870f-0b102c6083f7
Fingerprint	76443c7a187d13fa
Analysis status	DONE
Considered CTI value	0
Text language
Published	July 26, 2018, midnight
Added to db	Jan. 18, 2023, 7:54 p.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	XiaoBa 2.0
Detected Hints/Tags/Attributes	20/1/6

Source URLs

	Redirection	Url
Details	Source	http://id-ransomware.blogspot.com/2018/07/xiaoba-2-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	85		163.com
Details	Domain	911		any.run
Details	File	1		help_sos.vbs
Details	File	1		install_flash_player.bin
Details	File	1122		svchost.exe
Details	File	1		%temp%\help_sos.vbs