CryptXXX, CryptXXX 2.0
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 9c85709a-d21b-4148-9c16-6f452f2a8f5d |
| Fingerprint | b67139cf106126b2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 18, 2016, 11 a.m. |
| Added to db | Sept. 26, 2022, 9:32 a.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | CryptXXX, CryptXXX 2.0 |
| Detected Hints/Tags/Attributes | 33/1/21 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | translate.qooqle.com |
|
| Details | Domain | 622 | en.wikipedia.org |
|
| Details | Domain | 1 | rp4roxeuhcf2vgft.onion.to |
|
| Details | Domain | 1 | rp4roxeuhcf2vgft.onion.cab |
|
| Details | Domain | 1 | rp4roxeuhcf2vgft.onion.city |
|
| Details | Domain | 59 | torproject.org |
|
| Details | Domain | 768 | www.youtube.com |
|
| Details | File | 3 | de_crypt_readme.txt |
|
| Details | File | 2 | de_crypt_readme.bmp |
|
| Details | File | 3 | de_crypt_readme.html |
|
| Details | File | 29 | onion.cab |
|
| Details | File | 26 | torbrowser.html |
|
| Details | File | 1 | api-ms-win-system-softpub-l1-1-0.dll |
|
| Details | File | 1 | api-ms-win-system-provsvc-l1-1-0.dll |
|
| Details | File | 1 | api-ms-win-system-wer-l1-1-0.dll |
|
| Details | File | 1 | api-ms-win-system-advpack-l1-1-0.dll |
|
| Details | IPv4 | 1 | 146.0.42.68 |
|
| Details | IPv4 | 1 | 104.193.252.245 |
|
| Details | Url | 1 | https://translate.qooqle.com |
|
| Details | Url | 23 | https://en.wikipedia.org/wiki/rsa_ |
|
| Details | Url | 1 | http://rp4roxeuhcf2vgft.omon |