ioc[.]one - OSINT Cyber Threat Intelligence Database

New Ransomware Spotted: White Rabbit and Its Evasion Tactics

Tags

attack-pattern:

Data Malware - T1587.001 Malware - T1588.001

Show in Graph

Common Information

Type	Value
UUID	8405aebe-4f7d-404b-88e3-d3388c991b24
Fingerprint	a552e9580775ba5b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 18, 2022, midnight
Added to db	Oct. 15, 2024, 3:17 p.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	New Ransomware Spotted: White Rabbit and Its Evasion Tactics
Title	New Ransomware Spotted: White Rabbit and Its Evasion Tactics
Detected Hints/Tags/Attributes	33/1/7

Source URLs

	Redirection	Url
Details	Source	https://www.trendmicro.com/en_my/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_hk/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_th/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Redirection	http://www.trendmicro.com/en_nl/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_nl/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_se/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_in/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_au/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_ae/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_be/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_gb/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_sg/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_no/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_nz/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html
Details	Source	https://www.trendmicro.com/en_ca/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	www.trendmicro.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	3		104-168-132-128.nip.io
Details	File	2		scrypt.txt
Details	File	196		desktop.ini
Details	File	143		thumbs.db
Details	sha256	2		b0844458aaa2eaf3e0d70a5ce41fc2540b7e46bdc402c798dbdfe12b59ab32c3
Details	Threat Actor Identifier - FIN	68		FIN8
Details	Url	1		https://104-168-132-128.nip.io/cae260