Arena CryptoMix
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 89c403b5-7828-413d-b3ba-0adbe74a6866 |
| Fingerprint | 36515c7e16552a3a |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Aug. 31, 2017, 1:24 p.m. |
| Added to db | Jan. 18, 2023, 7:53 p.m. |
| Last updated | Nov. 17, 2024, 10:40 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | Arena CryptoMix |
| Detected Hints/Tags/Attributes | 21/1/12 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://id-ransomware.blogspot.com/2017/08/arena-ransomware.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 158 | aol.com |
|
| Details | Domain | 162 | localbitcoins.com |
|
| Details | Domain | 1 | constructioninc.zzz.com.ua |
|
| Details | 2 | ms.heisenberg@aol.com |
||
| Details | File | 26 | _help_instruction.txt |
|
| Details | File | 2126 | cmd.exe |
|
| Details | File | 409 | c:\windows\system32\cmd.exe |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 1 | bars.exe |
|
| Details | File | 8 | %userprofile%\downloads\_help_instruction.txt |
|
| Details | md5 | 1 | 1C0845081CCACEB0D0BFB73C1ED2B2F8 |
|
| Details | md5 | 1 | 331AA7BA31D29A55FF8E019634547E9D |