REvil Corp (from TryHackMe)
Tags
| country: | United States Of America |
| attack-pattern: | Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | e3bbcf2c-928c-4076-a3bc-837e7b867c6e |
| Fingerprint | a106365067a18694 |
| Analysis status | DONE |
| Considered CTI value | -2 |
| Text language | |
| Published | Oct. 5, 2024, 10:22 p.m. |
| Added to db | Oct. 6, 2024, 12:34 a.m. |
| Last updated | Nov. 16, 2024, 12:27 a.m. |
| Headline | REvil Corp (from TryHackMe) |
| Title | REvil Corp (from TryHackMe) |
| Detected Hints/Tags/Attributes | 20/2/12 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | gobiernousa.gov |
|
| Details | Domain | 4 | decryptor.top |
|
| Details | Domain | 268 | www.virustotal.com |
|
| Details | File | 1 | winrar2021.exe |
|
| Details | File | 1 | c:\users\john coleman\appdata\local\temp\hk8.bmp |
|
| Details | File | 1 | t48s39la-readme.txt |
|
| Details | File | 2 | gov.url |
|
| Details | md5 | 1 | f617af8c0d276682fdf528bb3e72560b |
|
| Details | IPv4 | 1 | 192.168.75.129 |
|
| Details | Url | 1 | http://192.168.75.129:4748/documents/winrar2021.exe |
|
| Details | Url | 1 | http://decryptor.top/644e7c8efa02fbb7 |
|
| Details | Url | 3 | https://www.virustotal.com/gui/home/search |