TZW Virus Ransomware [.tzw Files] Removal + Restore
Tags
country: Australia Netherlands Germany France Greece India Italy Spain Poland Portugal United Kingdom United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Direct Email Account - T1087.003 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID bfb573ed-0777-4b6b-b5ce-d58da6be6ec9
Fingerprint 875218792567aed9
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 12, 2023, 4:51 p.m.
Added to db Jan. 12, 2023, 9:13 p.m.
Last updated Nov. 17, 2024, 6:49 p.m.
Headline TZW Virus Ransomware [.tzw Files] Removal + Restore
Title TZW Virus Ransomware [.tzw Files] Removal + Restore
Detected Hints/Tags/Attributes 74/3/9
Source URLs
Redirection Url
Details Source https://sensorstechforum.com/tzw-virus-files/
URL Provider
Details Provider Source level domain
Details sensorstechforum.com sensorstechforum.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 29 
stopcrypt.km
Details Domain 179 
www.torproject.org
Details Domain 544 
sensorstechforum.com
Details File 367 
readme.txt
Details Url 63 
https://www.torproject.org
Details Windows Registry Key 493 
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Details Windows Registry Key 582 
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
Details Windows Registry Key 470 
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
Details Windows Registry Key 480 
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce