Ransoc Desktop Locking Ransomware Ransacks Local Files and Social Media Profiles | Proofpoint
Tags
| country: | Italy United States Of America |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Social Media - T1593.001 Social Media Accounts - T1585.001 Social Media Accounts - T1586.001 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | e937b236-fd65-4a3d-ad25-499af665c145 |
| Fingerprint | bc343bbf875bae99 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 14, 2016, 9:30 p.m. |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Sept. 4, 2024, 10:24 a.m. |
| Headline | Ransoc Desktop Locking Ransomware Ransacks Local Files and Social Media Profiles |
| Title | Ransoc Desktop Locking Ransomware Ransacks Local Files and Social Media Profiles | Proofpoint |
| Detected Hints/Tags/Attributes | 52/3/14 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | cis-criminal-report.com |
|
| Details | Domain | 1 | criminal-report.in |
|
| Details | Domain | 1 | violation-report.in |
|
| Details | Domain | 1 | latexfetishsex.com |
|
| Details | Domain | 1 | italy-girls.mobi |
|
| Details | Domain | 41 | malware.dontneedcoffee.com |
|
| Details | File | 1 | police-locker-available-for-your.htm |
|
| Details | sha256 | 1 | fee53dc4e165b2aa45c3e7bd100b49c367aa8b7f81757617114ff50a584a1566 |
|
| Details | IPv4 | 1 | 5.45.86.171 |
|
| Details | IPv4 | 1 | 78.47.134.204 |
|
| Details | IPv4 | 2 | 5.9.86.131 |
|
| Details | IPv4 | 1 | 5.45.86.148 |
|
| Details | Url | 1 | http://malware.dontneedcoffee.com/2014/05/police-locker-available-for-your.htm |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Windows\CurrentVersion\Run\JavaErrorHandler |