CryptFIle2
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 6b305cf1-08e6-4918-96ba-4ddf99c6357b |
| Fingerprint | fe54a1db73679a5e |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | June 10, 2016, 3:21 p.m. |
| Added to db | Jan. 18, 2023, 7:50 p.m. |
| Last updated | Nov. 17, 2024, 10:40 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | CryptFIle2 |
| Detected Hints/Tags/Attributes | 75/1/24 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 29 | usa.com |
|
| Details | Domain | 35 | translate.google.com |
|
| Details | Domain | 622 | en.wikipedia.org |
|
| Details | Domain | 707 | google.com |
|
| Details | Domain | 29 | dr.com |
|
| Details | 2 | file.txt.id_a0d01d07e030f060_email_xerx@usa.com.scl |
||
| Details | 2 | settings.xml.id_a0d01d07e030f060_email_xerx@usa.com.scl |
||
| Details | 3 | enc2@dr.com |
||
| Details | File | 79 | file.txt |
|
| Details | File | 66 | settings.xml |
|
| Details | File | 7 | help_your_files.html |
|
| Details | File | 8 | help_your_files.txt |
|
| Details | File | 2126 | cmd.exe |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 256 | net.exe |
|
| Details | File | 48 | net1.exe |
|
| Details | File | 1 | %windir%\system32\net1 stop vss cmd.exe |
|
| Details | File | 105 | bcdedit.exe |
|
| Details | File | 4 | desert.jpg |
|
| Details | File | 15 | background.png |
|
| Details | File | 4 | help_decrypt_your_files.html |
|
| Details | File | 1 | help_decrypt_your_files.txt |
|
| Details | Url | 22 | https://translate.google.com |
|
| Details | Url | 12 | http://en.wikipedia.org/wiki/rsa_ |