New CryptoTorLocker2015 Ransomware discovered and easily decrypted - Archived News
Tags
country: Australia
attack-pattern: Data Control Panel - T1218.002 Software - T1592.002 Tool - T1588.002
Show in Graph
Common Information
Type Value
UUID b62c4278-5c32-45c2-8cea-2edbf40cb3be
Fingerprint 36571a1a2fa78ef1
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 29, 2015, 4:11 p.m.
Added to db Sept. 26, 2022, 9:32 a.m.
Last updated Nov. 12, 2024, 11:51 a.m.
Headline New CryptoTorLocker2015 Ransomware discovered and easily decrypted
Title New CryptoTorLocker2015 Ransomware discovered and easily decrypted - Archived News
Detected Hints/Tags/Attributes 36/2/25
Source URLs
Redirection Url
Details Source http://www.bleepingcomputer.com/forums/t/565020/new-cryptotorlocker2015-ransomware-discovered-and-easily-decrypted/
URL Provider
Details Provider Source level domain
Details bleepingcomputer.com www.bleepingcomputer.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
etc.here
Details Domain 3 
files.to
Details Domain 162 
localbitcoins.com
Details Domain 40 
coinbase.com
Details Domain 2 
jupimail.com
Details Domain 1 
ransomwareanalysis.com
Details Domain 2 
dmidybmfxsaq.biz
Details Domain 2 
aacthvhqbhbg.org
Details Domain 2 
arlsolqovltp.co.uk
Details Domain 2 
fyhatdpptohp.org
Details Domain 2 
weotnaktbwgr.ru
Details Domain 3 
ovenbdjnihhdlb.net
Details Email 2 
information@jupimail.com
Details File 9 
invoice.doc
Details File 140 
files.txt
Details File 1 
ct2015_decrypter.zip
Details File 2 
%temp%\how to decrypt files.txt
Details IPv4 3 
93.189.44.187
Details Url 1 
http://ransomwareanalysis.com/ct2015_decrypter.zip
Details Windows Registry Key 2 
HKLM\SOFTWARE\Classes\.CryptoTorLocker2015
Details Windows Registry Key 2 
HKLM\SOFTWARE\Classes\PRPASCBHJSZLMOM
Details Windows Registry Key 2 
HKLM\SOFTWARE\Classes\PRPASCBHJSZLMOM\DefaultIcon
Details Windows Registry Key 2 
HKLM\SOFTWARE\Classes\PRPASCBHJSZLMOM\shell\open\command
Details Windows Registry Key 2 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\Alcmeter
Details Windows Registry Key 37 
HKCU\Control