ioc[.]one - OSINT Cyber Threat Intelligence Database

MEDUSALOCKER: Uprooting its Branches

Tags

attack-pattern:

Data Direct Domains - T1583.001 Domains - T1584.001 Email Addresses - T1589.002 Malware - T1587.001 Malware - T1588.001

Show in Graph

Common Information

Type	Value
UUID	9f6e2344-0e10-44e1-9f96-cbdc49b33c00
Fingerprint	d24709923d93ce73
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 9, 2023, 11:22 a.m.
Added to db	June 11, 2023, 2:38 a.m.
Last updated	Nov. 17, 2024, 5:56 p.m.
Headline	MEDUSALOCKER: Uprooting its Branches
Title	MEDUSALOCKER: Uprooting its Branches
Detected Hints/Tags/Attributes	55/1/117

Source URLs

	Redirection	Url
Details	Source	https://medium.com/coinmonks/medusalocker-uprooting-its-branches-df8386b95922?source=rss------infosec-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	168	✔	Infosec on Medium	https://medium.com/feed/tag/infosec	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	2	gvlay6u4g53rxdi5.onion
Details	Domain	2	qd7pcafncosqfqu3ha6fcx4h6sr7tzwagzpcdcnytiw3b6varaeqv5yd.onion
Details	Domain	3	z6wkgghtoawog5noty5nxulmmt2zs7c3yvwr22v4czbffdoly2kl4uad.onion
Details	Domain	167	tutanota.com
Details	Domain	144	cock.li
Details	Domain	396	protonmail.com
Details	Domain	3	tutanoa.com
Details	Domain	89	protonmail.ch
Details	Domain	68	keemail.me
Details	Domain	5	decorous.cyou
Details	Domain	4	wholeness.business
Details	Domain	272	outlook.com
Details	Domain	1	ransom.data
Details	Domain	1174	gmail.com
Details	Domain	1	novibmaker.com
Details	Domain	1	ypsotecs.com
Details	Domain	1	winrof.com
Details	Domain	1	wyseil.com
Details	Domain	2	welchallym.com
Details	Domain	2	bigweatherg.com
Details	Domain	2	exorints.com
Details	Domain	1	fanbridges.com
Details	Domain	5	aaathats3as.com
Details	Domain	2	bestkoronavirus.com
Details	Domain	1	imfoodst.com
Details	Domain	1	securycasts.com
Details	Domain	2	jitjat.org
Details	Domain	42	msgsafe.io
Details	Domain	2	mobtouches.com
Details	Domain	3	sitesoutheat.com
Details	Domain	2	dremno.com
Details	Domain	3	excic.com
Details	Domain	2	buildingwin.com
Details	Domain	3	atacdi.com
Details	Domain	15	tfwno.gf
Details	Domain	3	medusacegu2ufmc3kx2kkqicrlcxdettsjcenhjena6uannk5f4ffuyd.onion
Details	Domain	3	medusaxko7jxtrojdkxo66j7ck4q5tgktf7uqsqyfry4ebnxlcbkccyd.onion
Details	Email	1	sambolero@tutanota.com
Details	Email	3	rightcheck@cock.li
Details	Email	1	suppdecrypt@protonmail.com
Details	Email	1	suppdecrypt@cock.li
Details	Email	4	folieloi@protonmail.com
Details	Email	1	ctorsenoria@tutanoa.com
Details	Email	4	mrromber@cock.li
Details	Email	4	mrromber@tutanota.com
Details	Email	3	fartcool@protonmail.ch
Details	Email	3	bestcool@keemail.me
Details	Email	2	tanoss@protonmail.com
Details	Email	2	sypress@protonmail.com
Details	Email	2	ithelp@decorous.cyou
Details	Email	1	ithelp@wholeness.business
Details	Email	1	ithelp01@decorous.cyou
Details	Email	2	ithelp01@wholeness.business
Details	Email	3	ithelp02@decorous.cyou
Details	Email	3	ithelp02@wholeness.business
Details	Email	1	ithelp03@decorous.cyou
Details	Email	1	ithelp03@wholeness.business
Details	Email	2	ithelpconcilium@tutanota.com
Details	Email	2	nicolasmarvinlor@outlook.com
Details	Email	1	ithelp04@decorous.cyou
Details	Email	1	ithelp04@wholeness.business
Details	Email	1	ithelp06@decorous.cyou
Details	Email	1	ithelp06@wholeness.business
Details	Email	1	ithelp07@decorous.cyou
Details	Email	1	ithelp07@wholeness.business
Details	Email	1	ithelp08@decorous.cyou
Details	Email	1	ithelp08@wholeness.business
Details	Email	1	ithelp09@decorous.cyou
Details	Email	1	ithelp09@wholeness.business
Details	Email	1	help_24_decr1@outlook.com
Details	Email	1	help_24_decr2@outlook.com
Details	Email	1	restoreassistance_net@wholeness.business
Details	Email	2	restoreassistance_net@decorous.cyou
Details	Email	1	githelpernetwork@decorous.cyou
Details	Email	1	ithelpernetwork@wholeness.business
Details	Email	1	ransom.data@gmail.com
Details	Email	1	support@novibmaker.com
Details	Email	1	support@ypsotecs.com
Details	Email	1	diniaminius@winrof.com
Details	Email	1	soterissylla@wyseil.com
Details	Email	2	support@welchallym.com
Details	Email	2	support@bigweatherg.com
Details	Email	2	support@exorints.com
Details	Email	1	support@fanbridges.com
Details	Email	5	rpd@keemail.me
Details	Email	2	encrypt2020@outlook.com
Details	Email	2	encrypt2020@cock.li
Details	Email	1	perfection@bestkoronavirus.com
Details	Email	1	support@imfoodst.com
Details	Email	1	support@securycasts.com
Details	Email	2	lockperfection@gmail.com
Details	Email	2	coronaviryz@gmail.com
Details	Email	2	korona@bestkoronavirus.com
Details	Email	2	cmd@jitjat.org
Details	Email	2	dirhelp@keemail.me
Details	Email	1	beacon@jitjat.org
Details	Email	1	beacon@msgsafe.io
Details	Email	2	bitcoin@mobtouches.com
Details	Email	3	bitcoin@sitesoutheat.com
Details	Email	2	decoder83540@protonmail.com
Details	Email	3	decoder83540@cock.li
Details	Email	2	dec_helper@dremno.com
Details	Email	3	dec_helper@excic.com
Details	Email	1	fuc_ktheworld1448@outlook.com
Details	Email	1	fucktheworld1448@cock.li
Details	Email	2	helper@buildingwin.com
Details	Email	3	helper@atacdi.com
Details	Email	3	777decoder777@protonmail.com
Details	Email	2	777decoder777@tfwno.gf
Details	Email	2	medusa.serviceteam@protonmail.com
Details	Email	1	karloskolorado@tutanota.com
Details	Email	1	bugervongir@outlook.com
Details	File	2	ransom.dat
Details	md5	1	59e3542c4d5293a1a12b2bb6cb357d92
Details	md5	2	0f025715a5cb507fc46a4df12cfa74d4
Details	md5	1	94e797f17313dc5d704d2d026a842e3d
Details	md5	1	b09cd13c7a9ce8c94e15303f140bdd9f