ioc[.]one - OSINT Cyber Threat Intelligence Database

Rokku

Tags

attack-pattern:

Model

Show in Graph

Common Information

Type	Value
UUID	a005d094-d1b5-4a0d-80fb-5770d3a9717c
Fingerprint	b5064aee10cdd2fa
Analysis status	DONE
Considered CTI value	0
Text language
Published	April 14, 2016, 6:30 p.m.
Added to db	Sept. 26, 2022, 9:32 a.m.
Last updated	Nov. 17, 2024, 6:49 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	Rokku
Detected Hints/Tags/Attributes	28/1/10

Source URLs

	Redirection	Url
Details	Source	http://id-ransomware.blogspot.com/2016/04/rokku-ransomware.html
Details	Source	https://id-ransomware.blogspot.com/2016/04/rokku-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1		zvnvp2rhe3ljwf2m.onion
Details	File	1		readme_how_to_unlock.html
Details	File	1		readme_how_to_unlock.txt
Details	File	351		recycle.bin
Details	File	143		thumbs.db
Details	File	101		iconcache.db
Details	File	2		bootsec.bak
Details	File	1		%userprofile%\desktop\readme_how_to_unlock.html
Details	File	1		%userprofile%\documents\readme_how_to_unlock.txt
Details	Url	1		http://zvnvp2rhe3ljwf2m.onion