ioc[.]one - OSINT Cyber Threat Intelligence Database

Vice Society Ransomware Group Targets Manufacturing Companies

Tags

country:	Argentina Brazil Switzerland Israel
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Remote Desktop Protocol - T1021.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vnc - T1021.005 Tool - T1588.002 Vulnerabilities - T1588.006 Powershell - T1086 Remote Desktop Protocol - T1076

Show in Graph

Common Information

Type	Value
UUID	8fbdecf1-a3fb-44f2-add4-7f732b8235cf
Fingerprint	a779a88daf57be1d
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 24, 2023, midnight
Added to db	Oct. 15, 2024, 4:11 p.m.
Last updated	Nov. 17, 2024, 10:40 p.m.
Headline	Vice Society Ransomware Group Targets Manufacturing Companies
Title	Vice Society Ransomware Group Targets Manufacturing Companies
Detected Hints/Tags/Attributes	75/3/12

Source URLs

	Redirection	Url
Details	Source	https://www.trendmicro.com/en_sg/research/23/a/vice-society-ransomware-group-targets-manufacturing-companies.html
Details	Source	https://www.trendmicro.com/en_my/research/23/a/vice-society-ransomware-group-targets-manufacturing-companies.html
Details	Source	https://www.trendmicro.com/en_au/research/23/a/vice-society-ransomware-group-targets-manufacturing-companies.html
Details	Source	https://www.trendmicro.com/en_in/research/23/a/vice-society-ransomware-group-targets-manufacturing-companies.html
Details	Source	https://www.trendmicro.com/en_nz/research/23/a/vice-society-ransomware-group-targets-manufacturing-companies.html

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	www.trendmicro.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		57thandnormal.com
Details	File	2		c:\mnt\smile.exe
Details	File	8		w1.ps1
Details	File	1208		powershell.exe
Details	File	2		c:\programdata\test.exe
Details	File	12		c:\windows\temp\svchost.exe
Details	File	1122		svchost.exe
Details	File	345		vssadmin.exe
Details	File	2126		cmd.exe
Details	File	95		wevtutil.exe
Details	Windows Registry Key	12		HKLM\Software\Policies\Microsoft\Windows
Details	Windows Registry Key	19		HKEY_CURRENT_USER\Software\Microsoft\Terminal