ioc[.]one - OSINT Cyber Threat Intelligence Database

DCRTR

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	62a0be86-a8ef-4c5c-aeb4-f8a6974e2e89
Fingerprint	1615587e14c71e1b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 7, 2018, 11:42 a.m.
Added to db	Jan. 18, 2023, 7:53 p.m.
Last updated	Nov. 17, 2024, 5:56 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	DCRTR
Detected Hints/Tags/Attributes	28/1/37

Source URLs

	Redirection	Url
Details	Source	http://id-ransomware.blogspot.com/2018/02/dcrtr-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	Value
Details	Domain	144	cock.li
Details	Domain	14	openmailbox.org
Details	Domain	162	localbitcoins.com
Details	Domain	68	www.coindesk.com
Details	Domain	47	microsoft.exchange
Details	Domain	396	protonmail.com
Details	Domain	99	qq.com
Details	Domain	17	foxmail.com
Details	Domain	2	crypt443sgtkyz4l.onion
Details	Domain	12	yahooweb.co
Details	Domain	13	jabb.im
Details	Email	2	decryptor@cock.li
Details	Email	1	masterdecrypt@openmailbox.org
Details	Email	1	kinaman@protonmail.com
Details	Email	2	castor-troy-restore@protonmail.com
Details	Email	2	dekode@qq.com
Details	Email	1	supdecrypt@foxmail.com
Details	Email	1	supportdecryption@cock.li
Details	Email	1	billy_will_help_you@protonmail.com
Details	Email	1	cryptmanager@protonmail.com
Details	Email	2	cryptonationusa@protonmail.com
Details	Email	2	servicemanager@yahooweb.co
Details	Email	2	servicemanager2020@protonmail.com
Details	Email	2	servicemanager@jabb.im
Details	File	3	readme_decryptor.txt
Details	File	118	sc.exe
Details	File	82	taskkill.exe
Details	File	21	sqlserver.exe
Details	File	66	sqlwriter.exe
Details	File	1	msshost.exe
Details	File	1	%appdata%\msshost.exe
Details	File	140	files.txt
Details	File	1	reglstry.exe
Details	File	2	marvel.exe
Details	Pdb	2	filecryptor.pdb
Details	Url	52	https://localbitcoins.com/buy_bitcoins
Details	Url	41	http://www.coindesk.com/information/how-can-i-buy-bitcoins