Ransomware: Kill Security
Tags
cmtmf-attack-pattern: Application Layer Protocol Exploit Public-Facing Application Masquerading
maec-delivery-vectors: Watering Hole
attack-pattern: Application Layer Protocol - T1437 Data Encrypted For Impact - T1471 Data Encrypted For Impact - T1486 Disable Or Modify Tools - T1562.001 Disable Or Modify Tools - T1629.003 Exfiltration Over C2 Channel - T1646 Exploit Public-Facing Application - T1377 File Deletion - T1070.004 File Deletion - T1630.002 Impair Defenses - T1562 Impair Defenses - T1629 Ingress Tool Transfer - T1544 Inhibit System Recovery - T1490 Masquerading - T1655 Phishing - T1660 Phishing - T1566 Remote Access Software - T1663 Software - T1592.002 Web Protocols - T1071.001 Web Protocols - T1437.001 Standard Application Layer Protocol - T1071 Exfiltration Over Command And Control Channel - T1041 Exploit Public-Facing Application - T1190 File Deletion - T1107 Indicator Removal On Host - T1070 Remote File Copy - T1105 Masquerading - T1036 Remote Access Tools - T1219 Valid Accounts - T1078 Exploit Public-Facing Application Masquerading Valid Accounts
Show in Graph
Common Information
Type Value
UUID 4d935270-a2c4-48de-8eff-7ef07d4cf308
Fingerprint 888bd01564d627dd
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 29, 2024, 3:50 p.m.
Added to db Oct. 29, 2024, 5:28 p.m.
Last updated Nov. 17, 2024, 6:56 p.m.
Headline Ransomware: Kill Security
Title Ransomware: Kill Security
Detected Hints/Tags/Attributes 42/3/19
Source URLs
Redirection Url
Details Source https://medium.com/@rayssac/ransomware-kill-security-7013beaf1197?source=rss------malware-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 171 Malware on Medium https://medium.com/feed/tag/malware 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 217 
cve-2020-1472
Details CVE 152 
cve-2023-3519
Details CVE 107 
cve-2023-27997
Details Domain 1 
ks5424y3wpr5zlug5c7i6svvxweinhbdcqcfnptkfcutrncfazzgz5id.onion
Details File 1 
posts.php
Details MITRE ATT&CK Techniques 409 
T1566
Details MITRE ATT&CK Techniques 306 
T1078
Details MITRE ATT&CK Techniques 542 
T1190
Details MITRE ATT&CK Techniques 298 
T1562.001
Details MITRE ATT&CK Techniques 297 
T1070.004
Details MITRE ATT&CK Techniques 348 
T1036
Details MITRE ATT&CK Techniques 492 
T1105
Details MITRE ATT&CK Techniques 442 
T1071.001
Details MITRE ATT&CK Techniques 141 
T1219
Details MITRE ATT&CK Techniques 422 
T1041
Details MITRE ATT&CK Techniques 472 
T1486
Details MITRE ATT&CK Techniques 276 
T1490
Details Url 1 
http://ks5424y3wpr5zlug5c7i6svvxweinhbdcqcfnptkfcutrncfazzgz5id.onion/posts.php
Details Url 1 
https://www.linkedin.com/pulse/grupo-de-ransomware-kill-security-rayssa-cardoso-9dvke/?trackingid=rkrwu601shyx3sueynwetw==