PowerShell Locker
Tags
| attack-pattern: | Data Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | d6ab6186-95d2-4b41-984f-8cd681873692 |
| Fingerprint | 364d1cda56e15f73 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 30, 2015, 9:22 p.m. |
| Added to db | Jan. 18, 2023, 7:50 p.m. |
| Last updated | Nov. 17, 2024, 6:49 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | PowerShell Locker |
| Detected Hints/Tags/Attributes | 55/1/13 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 622 | en.wikipedia.org |
|
| Details | Domain | 1 | vswefkqsipoeuq5o.onion.nu |
|
| Details | Domain | 179 | www.torproject.org |
|
| Details | Domain | 1 | vswefkqsipoeuq5o.onion |
|
| Details | Domain | 1 | lgemfolpt5ntjaot.onion.nu |
|
| Details | Domain | 1 | lgemfolpt5ntjaot.onion |
|
| Details | File | 367 | readme.txt |
|
| Details | File | 3 | decrypt_instruction.html |
|
| Details | File | 5 | decrypt_instruction.txt |
|
| Details | File | 26 | torbrowser.html |
|
| Details | Url | 12 | http://en.wikipedia.org/wiki/rsa_ |
|
| Details | Url | 1 | http://vswefkqsipoeuq5o.onion.nu |
|
| Details | Url | 10 | http://www.torproject.org/projects/torbrowser.html.en |