ioc[.]one - OSINT Cyber Threat Intelligence Database

Guster

Tags

attack-pattern:

Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	dd340177-da38-4898-aa1f-fd243efca0f8
Fingerprint	37e6798f40ef7a7b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Dec. 23, 2016, 8:52 p.m.
Added to db	Jan. 18, 2023, 7:51 p.m.
Last updated	Nov. 4, 2024, 10:59 p.m.
Headline	Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title	Guster
Detected Hints/Tags/Attributes	14/1/8

Source URLs

	Redirection	Url
Details	Source	http://id-ransomware.blogspot.com/2016/12/guster-ransomware.html
Details	Source	https://id-ransomware.blogspot.co.il/2016/12/guster-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	blogspot.co.il	id-ransomware.blogspot.co.il
Details	blogspot.com	id-ransomware.blogspot.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	162		localbitcoins.com
Details	Domain	1		www.bestbitcoinexchange.io
Details	Domain	119		yandex.ru
Details	Domain	1		goolserver.ultimatefreehost.in
Details	Email	1		nucklearsupport@yandex.ru
Details	File	1		guster.exe
Details	File	6		proxy.php
Details	Url	1		https://www.bestbitcoinexchange.io