ioc[.]one - OSINT Cyber Threat Intelligence Database

Digging into HermeticWiper

Tags

country:	Cyprus Laos Russia Ukraine
attack-pattern:	Data Direct Malware - T1587.001 Malware - T1588.001 Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	3f253b0c-ca20-49a1-8d28-b4d7b65dec01
Fingerprint	e505fa730deba082
Analysis status	DONE
Considered CTI value	2
Text language
Published	March 2, 2022, midnight
Added to db	Sept. 26, 2022, 9:34 a.m.
Last updated	Sept. 4, 2024, 7:40 a.m.
Headline	Digging into HermeticWiper
Title	Digging into HermeticWiper
Detected Hints/Tags/Attributes	56/2/5

Source URLs

	Redirection	Url
Details	Source	https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/digging-into-hermeticwiper.html

URL Provider

Details	Provider	Source level domain
Details	trellix.com	www.trellix.com

Attributes

Details	Type	#Events	CTI	Value
Details	md5	7		3f4a16b29f2f0532b7ce3e7656799125
Details	sha1	8		61b25d11392172e587d8da3045812a66c3385451
Details	sha256	23		1bc44eef75779e3ca1eefb8ff5a64807dbc942b1e4a2672d77b9f6928d292591
Details	Windows Registry Key	2		HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\CrashControl\CrashDumpEnabled
Details	Windows Registry Key	1		HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced