Dark Angels | ESXi Ransomware Borrows Code & Victimology From RagnarLocker
Tags
country: United States Of America
attack-pattern: Data Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID d08d6be1-16b0-41f6-bc85-79db8bb04756
Fingerprint b272b811051d9bcd
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 12, 2023, midnight
Added to db Oct. 22, 2023, 10:40 p.m.
Last updated Nov. 17, 2024, 6:53 p.m.
Headline Dark Angels | ESXi Ransomware Borrows Code & Victimology From RagnarLocker
Title Dark Angels | ESXi Ransomware Borrows Code & Victimology From RagnarLocker
Detected Hints/Tags/Attributes 48/2/9
Source URLs
Redirection Url
Details Source https://www.sentinelone.com/blog/dark-angels-esxi-ransomware-borrows-code-victimology-from-ragnarlocker/
URL Provider
Details Provider Source level domain
Details sentinelone.com www.sentinelone.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 234 SentinelOne https://sentinelone.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
qspjx67hi3heumrubqotn26cwimb6vjegiwgvrnpa6zefae2nqs6xqad.onion
Details Domain 2 
lyoevnzm3ewiq6jeyyuob2wfou7gh47yotuucsrwlf6ju3xrw43wacad.onion
Details Domain 2 
p66slxmtum2ox4jpayco6ai3qfehd5urgrs4oximjzklxcol264driqd.onion
Details Domain 18 
ufile.io
Details Domain 14 
ibb.co
Details File 1 
wrkman.log
Details sha1 2 
06187023d399f3f57ca16a3a8fb9bb1bdb721603
Details sha1 2 
5411d7905bef69cb16d44f52fc46aa32fd922c80
Details sha1 2 
7c2e9232127385989ba4d7847de2968595024e83