ioc[.]one - OSINT Cyber Threat Intelligence Database

8Base Ransomware: A Heavy Hitting Player

Tags

maec-delivery-vectors:

Watering Hole

attack-pattern:

Data Model Data Encrypted For Impact - T1471 Data Encrypted For Impact - T1486 Disable Or Modify Tools - T1562.001 Disable Or Modify Tools - T1629.003 Domains - T1583.001 Domains - T1584.001 Inhibit System Recovery - T1490 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Registry Run Keys / Startup Folder - T1547.001 Software - T1592.002 Software Packing - T1027.002 Software Packing - T1406.002 Token Impersonation/Theft - T1134.001 Tool - T1588.002 Connection Proxy - T1090 Network Share Discovery - T1135 Registry Run Keys / Start Folder - T1060 Software Packing - T1045

Show in Graph

Common Information

Type	Value
UUID	970c6714-9e6c-4349-b317-b258fde5b419
Fingerprint	a50653ba8fd79e6b
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 2, 2022, midnight
Added to db	Aug. 13, 2023, 1:48 a.m.
Last updated	Nov. 17, 2024, 6:56 p.m.
Headline	8Base Ransomware: A Heavy Hitting Player
Title	8Base Ransomware: A Heavy Hitting Player
Detected Hints/Tags/Attributes	73/2/29

Source URLs

	Redirection	Url
Details	Source	https://blogs.vmware.com/security/2023/06/8base-ransomware-a-heavy-hitting-player.html
Details	Source	https://blogs.vmware.com/security/2023/06/8base-ransomware-a-heavy-hitting-player.html?utm_source=rss&utm_medium=rss&utm_campaign=8base-ransomware-a-heavy-hitting-player

URL Provider

Details	Provider	Source level domain
Details	vmware.com	blogs.vmware.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	121	✔	VMware Security Blog	https://feeds.feedburner.com/VmwareSecurityComplianceBlog	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	7		admlogs25.xyz
Details	Domain	4		wlaexfpxrs.org
Details	Domain	4		admhexlogs25.xyz
Details	Domain	4		admlog2.xyz
Details	Domain	4		dnm777.xyz
Details	Domain	4		serverlogs37.xyz
Details	Domain	4		dexblog.xyz
Details	Domain	4		blogstat355.xyz
Details	Domain	4		blogstatserv25.xyz
Details	File	3		9f1a.exe
Details	File	3		d6ff.exe
Details	File	3		3c1e.exe
Details	md5	3		20110FF550A2290C5992A5BB6BB44056
Details	md5	4		9769c181ecef69544bbb2f974b8c0e10
Details	sha1	3		3d2b088a397e9c7e9ad130e178f885feebd9688b
Details	sha1	5		5d0f447f4ccc89d7d79c0565372195240cdfa25f
Details	sha256	5		518544e56e8ccee401ffa1b0a01a10ce23e49ec21ec441c6c7c3951b01c1b19c
Details	sha256	3		5ba74a5693f4810a8eb9b9eeb1d69d943cf5bbc46f319a32802c23c7654194b0
Details	sha256	4		e142f4e8eb3fb4323fb377138f53db66e3e6ec9e82930f4b23dd91a5f7bd45d0
Details	sha256	3		c6bd5b8e14551eb899bbe4decb6942581d28b2a42b159146bbc28316e6e14a64
Details	sha256	3		afddec37cdc1d196a1136e2252e925c0dcfe587963069d78775e0f174ae9cfe3
Details	MITRE ATT&CK Techniques	380		T1547.001
Details	MITRE ATT&CK Techniques	176		T1135
Details	MITRE ATT&CK Techniques	44		T1134.001
Details	MITRE ATT&CK Techniques	298		T1562.001
Details	MITRE ATT&CK Techniques	160		T1027.002
Details	MITRE ATT&CK Techniques	276		T1490
Details	MITRE ATT&CK Techniques	472		T1486
Details	Url	1		https://t.me/eightbase