Evolution of Mallox: from private ransomware to RaaS
Tags
country: Belgium Brazil China Trinidad And Tobago Russia Vietnam
maec-delivery-vectors: Watering Hole
attack-pattern: Data Model Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Private Keys - T1552.004 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Vnc - T1021.005 Vulnerabilities - T1588.006 Powershell - T1086 Private Keys - T1145
Show in Graph
Common Information
Type Value
UUID a451d570-13ba-4657-9110-762eada2b5f7
Fingerprint ae9720d3ce79a6c1
Analysis status DONE
Considered CTI value 2
Text language
Published Sept. 4, 2024, 10 a.m.
Added to db Sept. 4, 2024, 12:23 p.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline Mallox ransomware: in-depth analysis and evolution
Title Evolution of Mallox: from private ransomware to RaaS
Detected Hints/Tags/Attributes 110/3/28
Source URLs
Redirection Url
Details Source https://securelist.com/mallox-ransomware/113529/
Details Source https://malware.news/t/mallox-ransomware-in-depth-analysis-and-evolution/85986
URL Provider
Details Provider Source level domain
Details malware.news malware.news
Details securelist.com securelist.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 158 Malware Analysis, News and Indicators - Latest topics https://malware.news/latest.rss 2024-08-30 22:08
Details 223 Securelist https://securelist.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 7 
cve-2019-1068
Details CVE 24 
cve-2020-0618
Details Domain 339 
system.net
Details File 2125 
cmd.exe
Details File 2 
%appdata%\alta.ps1
Details File 2 
scavenger.exe
Details File 2 
%appdata%\box.bat
Details File 345 
vssadmin.exe
Details File 6 
debuglog.txt
Details File 2 
mallox.exe
Details File 140 
files.txt
Details File 45 
information.txt
Details File 19 
recovery.txt
Details md5 3 
9b772efb921de8f172f21125dd0e0ff7
Details md5 5 
e98b3a8d2179e0bd0bebba42735d11b7
Details md5 3 
79b60f8b5052a9d4cc0c92c2cdc47485
Details md5 3 
e713f05a62914496eef512a93a611622
Details md5 3 
3829a09bca120206883539eb33d55311
Details md5 3 
a8e214683307adaff39783dc656b398a
Details md5 3 
ac1a255e5c908f12ef68a45fc0043b16
Details md5 3 
b1b42fa300d8f43c6deb98754caf0934
Details md5 3 
3762f98a55f0ec19702f388fc0db74e2
Details md5 3 
6bd93817967cdb61e0d7951382390fa0
Details md5 3 
c494342b6c84f649dece4df2d3ff1031
Details md5 3 
16e708876c32ff56593ba00931e0fb67
Details md5 3 
d32a3478aad766be96f0cdbda1f10091
Details md5 3 
98c7f6b6ddf6a01adb25457e9a3c52b8
Details md5 3 
b13a1e9c7ef5a51f64a58bae9b508e62