Prestige ransomware hits victims of HermeticWiper
Tags
country: Poland Russia Ukraine
maec-delivery-vectors: Watering Hole
attack-pattern: Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Scheduled Task - T1053.005 Tool - T1588.002 Powershell - T1086 Scheduled Task - T1053
Show in Graph
Common Information
Type Value
UUID a31967cc-35cc-41fd-a682-d1be1b3d0788
Fingerprint a410a9792ea387d6
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 18, 2022, 7:31 a.m.
Added to db Oct. 18, 2022, 11:07 a.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Imagine surviving a wiper attack only for ransomware to scramble your restored files
Title Prestige ransomware hits victims of HermeticWiper
Detected Hints/Tags/Attributes 47/3/3
Source URLs
Redirection Url
Details Source https://www.theregister.com/2022/10/18/prestige_ransomware_microsoft_ukraine/
URL Provider
Details Provider Source level domain
Details theregister.com www.theregister.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 69 
comsvcs.dll
Details File 59 
ntdsutil.exe
Details Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) 12 
DEV-0960