Rewterz Threat Alert – Satan ransomware rebrands as 5ss5c ransomware - Rewterz
Tags
attack-pattern: | Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 |
Common Information
Type | Value |
---|---|
UUID | cd9bd626-e23f-4d94-8a46-0fe6f332641a |
Fingerprint | a19480714fd78f4e |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Feb. 17, 2020, 3:32 p.m. |
Added to db | Dec. 19, 2024, 9:43 a.m. |
Last updated | Dec. 20, 2024, 12:34 p.m. |
Headline | Rewterz Threat Alert – Satan ransomware rebrands as 5ss5c ransomware |
Title | Rewterz Threat Alert – Satan ransomware rebrands as 5ss5c ransomware - Rewterz |
Detected Hints/Tags/Attributes | 27/1/33 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 260 | mail.ru |
|
Details | 2 | 5ss5c@mail.ru |
||
Details | md5 | 1 | e56b28203a66d88da2c951c9b47fb2c0 |
|
Details | md5 | 1 | 8accffa5e7d5b14ee8109a8f99c72661 |
|
Details | md5 | 2 | 756b6353239874d64291e399584ac9e5 |
|
Details | md5 | 1 | ba008ae920251f962fdc0f80c27dd975 |
|
Details | md5 | 2 | dc646bdbe28b453ba190a6356959d028 |
|
Details | md5 | 1 | f56025565de4f53f5771d4966c2b5555 |
|
Details | md5 | 1 | dfc0966397adcd590a4fba85d16bccf6 |
|
Details | md5 | 1 | 0f371453cdab407283e2723b0c99c2f5 |
|
Details | md5 | 1 | 680d9c8bb70e38d3727753430c655699 |
|
Details | md5 | 1 | 853358339279b590fb1c40c3dc0cdb72 |
|
Details | md5 | 2 | 09d45ae26830115fd8d9cdc2aa640ca5 |
|
Details | md5 | 1 | 01a9b1f9a9db526a54a64e39a605dd30 |
|
Details | md5 | 1 | ca3c0851c7451fc34dc37c2c53e2f70a |
|
Details | sha256 | 1 | 47fa9c298b904d66a5eb92c67dee602198259d366ef4f078a8365beefb9fdc95 |
|
Details | sha256 | 1 | 8e348105cde49cad8bfbe0acca0da67990289e108799c88805023888ead74300 |
|
Details | sha256 | 2 | ad3c0b153d5b5ba4627daa89cd2adbb18ee5831cb67feeb7394c51ebc1660f41 |
|
Details | sha256 | 1 | af041f6ac90b07927696bc61e08a31a210e265a997a62cf732f7d3f5c102f1da |
|
Details | sha256 | 2 | a46481cdb4a9fc1dbdcccc49c3deadbf18c7b9f274a0eb5fdf73766a03f19a7f |
|
Details | sha256 | 1 | ea7caa08e115dbb438e29da46b47f54c62c29697617bae44464a9b63d9bddf18 |
|
Details | sha256 | 1 | e685aafc201f851a47bc926dd39fb12f4bc920f310200869ce0716c41ad92198 |
|
Details | sha256 | 1 | 68e644aac112fe3bbf4e87858f58c75426fd5fda93f194482af1721bc47f1cd7 |
|
Details | sha256 | 1 | ddfd1d60ffea333a1565b0707a7adca601dafdd7ec29c61d622732117416545f |
|
Details | sha256 | 1 | ca154fa6ff0d1ebc786b4ea89cefae022e05497d095c2391331f24113aa31e3c |
|
Details | sha256 | 2 | cf33a92a05ba3c807447a5f6b7e45577ed53174699241da360876d4f4a2eb2de |
|
Details | sha256 | 1 | 9a1365c42f4aca3e9c1c5dcf38b967b73ab56e4af0b4a4380af7e2bf185478bc |
|
Details | sha256 | 1 | 23205bf9c36bbd56189e3f430c25db2a27eb089906b173601cd42c66a25829a7 |
|
Details | IPv4 | 1 | 58.221.158.90 |
|
Details | IPv4 | 1 | 61.186.243.2 |
|
Details | Url | 1 | http://58.221.158.90:88/car/cpt.dat |
|
Details | Url | 1 | http://58.221.158.90:88/car/down.txt |
|
Details | Url | 1 | http://58.221.158.90:88/car/c.dat |