Helldown Ransomware – A New Emerging Ransomware Threat
Tags
attack-pattern: Data Credentials - T1589.001 Data Encrypted For Impact - T1486 Disable Or Modify Tools - T1562.001 Local Accounts - T1078.003 Powershell - T1059.001 Remote Desktop Protocol - T1021.001 Software - T1592.002 Tool - T1588.002 Credential Dumping - T1003 Remote File Copy - T1105 Network Service Scanning - T1046 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 446cf55a-5991-47c4-b43d-fdeba10a2faf
Fingerprint bc26809085a486c8
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 7, 2024, midnight
Added to db Nov. 15, 2024, 1:54 p.m.
Last updated Nov. 17, 2024, 6:56 p.m.
Headline Helldown Ransomware Group – A New Emerging Ransomware Threat
Title Helldown Ransomware – A New Emerging Ransomware Threat
Detected Hints/Tags/Attributes 61/1/28
Source URLs
Redirection Url
Details Source https://www.truesec.com/hub/blog/helldown-ransomware-group
URL Provider
Details Provider Source level domain
Details truesec.com www.truesec.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
download.advanced-port-scanner.com
Details File 226 
certutil.exe
Details File 5 
hrsword.exe
Details File 74 
mstsc.exe
Details File 122 
psexec.exe
Details File 1 
hellenc.exe
Details File 1 
c:\\users\\redacted\\desktop\\hellenc.exe
Details File 1 
xx.ico
Details File 1 
hs.exe
Details File 13 
advanced_port_scanner.exe
Details File 76 
mimikatz.exe
Details File 1 
mimikatz.bat
Details File 25 
teamviewer.exe
Details File 1208 
powershell.exe
Details File 8 
c:\windows\system32\certutil.exe
Details File 16 
3869.exe
Details sha1 1 
2b88d6e9475fc1e035f8e49ebb5a79d3266eccc0
Details sha1 1 
1be0a62694883c4cc30ce7a6358af9953e7b41f4
Details IPv4 1 
10.10.11.0
Details IPv4 262 
192.168.1.1
Details MITRE ATT&CK Techniques 43 
T1078.003
Details MITRE ATT&CK Techniques 289 
T1003
Details MITRE ATT&CK Techniques 492 
T1105
Details MITRE ATT&CK Techniques 168 
T1046
Details MITRE ATT&CK Techniques 298 
T1562.001
Details MITRE ATT&CK Techniques 160 
T1021.001
Details MITRE ATT&CK Techniques 472 
T1486
Details Url 1 
https://download.advanced-port-scanner.com/download/files/advanced_port_scanner_2.5.3869.exe