Threat profile: Egregor ransomware is making a name for itself | Malwarebytes Labs
Tags
| country: | Netherlands France Italy Poland |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Phishing - T1660 Phishing - T1566 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 5bcd65de-dd7b-43b0-a620-b5fed41f17ab |
| Fingerprint | 807309dbaa16bb78 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 15, 2020, midnight |
| Added to db | Sept. 26, 2022, 9:30 a.m. |
| Last updated | Nov. 17, 2024, 5:54 p.m. |
| Headline | Threat profile: Egregor ransomware is making a name for itself |
| Title | Threat profile: Egregor ransomware is making a name for itself | Malwarebytes Labs |
| Detected Hints/Tags/Attributes | 37/3/11 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 71 | cve-2020-0688 |
|
| Details | CVE | 106 | cve-2018-8174 |
|
| Details | CVE | 92 | cve-2018-4878 |
|
| Details | CVE | 59 | cve-2018-15982 |
|
| Details | Domain | 2 | egregorwiki.top |
|
| Details | Domain | 2 | wikiegregor.top |
|
| Details | Domain | 3 | sekhmet.top |
|
| Details | Domain | 2 | sekhmetleaks.top |
|
| Details | File | 9 | recover-files.txt |
|
| Details | sha256 | 2 | 4c9e3ffda0e663217638e6192a093bbc23cd9ebfbdf6d2fc683f331beaee0321 |
|
| Details | sha256 | 2 | aee131ba1bfc4b6fa1961a7336e43d667086ebd2c7ff81029e14b2bf47d9f3a7 |