CryptoMix-MOLE66
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | b2b83a82-808c-43b7-ac2e-59efa54fecbe |
| Fingerprint | f76c7d6e0e756bba |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | March 29, 2018, 7:53 a.m. |
| Added to db | Jan. 18, 2023, 7:54 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | CryptoMix-MOLE66 |
| Detected Hints/Tags/Attributes | 18/1/12 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://id-ransomware.blogspot.com/2018/03/mole66-cryptomix-ransomware.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 158 | aol.com |
|
| Details | Domain | 911 | any.run |
|
| Details | 3 | alpha2018a@aol.com |
||
| Details | File | 3 | alpha.exe |
|
| Details | File | 1 | _help_instructions_.txt |
|
| Details | File | 409 | c:\windows\system32\cmd.exe |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 3 | bc2d64a077.exe |
|
| Details | File | 1 | %appdata%\bc2d64a077.exe |
|
| Details | md5 | 1 | 0B1A47E6049EE13363E17B2E07DFC223 |
|
| Details | md5 | 1 | 0BE8F0E8365E948B73238DF8399D73DF |
|
| Details | md5 | 1 | 1EAEAD6426B4E36E2513E0342A7DBDDA |