ioc[.]one - OSINT Cyber Threat Intelligence Database

AvosLocker

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	698b5c63-91c0-42cd-8e37-9a28bd5ee6d7
Fingerprint	364d125a39757975
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 4, 2021, 11:02 p.m.
Added to db	Sept. 26, 2022, 9:34 a.m.
Last updated	Nov. 12, 2024, 4:44 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	AvosLocker
Detected Hints/Tags/Attributes	29/1/22

Source URLs

	Redirection	Url
Details	Source	https://id-ransomware.blogspot.com/2021/07/avoslocker-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	Value
Details	Domain	2	avos2fuj6olp6x36.onion
Details	Domain	179	www.torproject.org
Details	Domain	1	cafedread.com
Details	Domain	19	thesecure.biz
Details	Domain	54	mail2tor.com
Details	Domain	93	bazaar.abuse.ch
Details	Domain	4	avosjon4pfh3y7ew3jdwz6ofw7lljcxlbk7hcxxmnxlh5kvf2akcqjad.onion
Details	Domain	4	avosqxh72b5ia23dl5fgwcpndkctuzqvh2iefk5imp3pi5gfhel5klad.onion
Details	Email	2	avos@thesecure.biz
Details	File	1	cryptor.avi
Details	File	9	get_your_files_back.txt
Details	File	1	c:\users\user\appdata\local\temp\43b7a60c0ef8b4af001f45a0c57410b7374b1d75a6811e0dfc86e4d60f503856.exe
Details	File	1	potter.exe
Details	md5	2	d285f1366d0d4fdae0b558db690497ea
Details	md5	1	a24c2b5bf84a5465eb75f1e6aa8c1eec
Details	md5	1	fe977e2028bbb774952df319042e3cab
Details	md5	1	b76d1d3d2d40366569da67620cf78a87
Details	md5	1	937232f73c1db87b7dd29e098d4395f6
Details	sha1	1	f6f94e2f49cd64a9590963ef3852e135e2b8deba
Details	sha256	3	43b7a60c0ef8b4af001f45a0c57410b7374b1d75a6811e0dfc86e4d60f503856
Details	Url	1	https://bazaar.abuse.ch/browse/tag/avoslocker
Details	Url	24	https://www.torproject.org/download