ioc[.]one - OSINT Cyber Threat Intelligence Database

Cuba Ransomware Group’s New Variant Found Using Optimized Infection Techniques

Tags

country:	Cuba
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Malware - T1587.001 Malware - T1588.001

Show in Graph

Common Information

Type	Value
UUID	cbd3f086-e391-4c2a-9a1c-4fc98d3fa66e
Fingerprint	87759999877b4f5b
Analysis status	DONE
Considered CTI value	0
Text language
Published	June 8, 2022, midnight
Added to db	Sept. 26, 2022, 9:34 a.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	Cuba Ransomware Group’s New Variant Found Using Optimized Infection Techniques
Title	Cuba Ransomware Group’s New Variant Found Using Optimized Infection Techniques
Detected Hints/Tags/Attributes	33/3/13

Source URLs

	Redirection	Url
Details	Source	https://www.trendmicro.com/en_us/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_hk/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_ie/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_ca/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_th/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_ph/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_se/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_id/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_ae/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_be/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_gb/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_no/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_dk/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html
Details	Source	https://www.trendmicro.com/en_fi/research/22/f/cuba-ransomware-group-s-new-variant-found-using-optimized-infect.html

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	www.trendmicro.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	5		microsoft.exchange.store
Details	File	58		sqlagent.exe
Details	File	119		sqlservr.exe
Details	File	66		sqlwriter.exe
Details	File	12		sqlceip.exe
Details	File	55		msdtc.exe
Details	File	62		sqlbrowser.exe
Details	File	15		vmwp.exe
Details	File	7		vmsp.exe
Details	File	173		outlook.exe
Details	File	10		worker.exe
Details	File	351		recycle.bin
Details	sha256	2		89288de628b402621007c7ebb289233e7568307fb12a33aac7e834504c17b4af