Blue Team Labs: Memory Analysis — Ransomware
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Malicious File - T1204.002 |
Common Information
| Type | Value |
|---|---|
| UUID | b90eac65-3410-41bd-8a33-01a41c4406fd |
| Fingerprint | 872ac93139a446b1 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 2, 2024, 7:23 p.m. |
| Added to db | Nov. 2, 2024, 8:51 p.m. |
| Last updated | Nov. 12, 2024, 8:53 a.m. |
| Headline | Blue Team Labs: Memory Analysis — Ransomware |
| Title | Blue Team Labs: Memory Analysis — Ransomware |
| Detected Hints/Tags/Attributes | 23/2/8 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 89 | vol.py |
|
| Details | Domain | 4 | www.upwork.com |
|
| Details | File | 85 | vol.py |
|
| Details | File | 25 | windows.ps |
|
| Details | File | 2 | or4qtckt.exe |
|
| Details | File | 22 | taskdl.exe |
|
| Details | File | 1 | c:\users\hacker\desktop\or4qtckt.exe |
|
| Details | Url | 3 | https://www.upwork.com/agencies/1665385475122515968 |