Shining Light on Dark Power: Yet Another Ransomware Gang
Tags
| country: | Algeria Egypt Czechia France Israel Peru |
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 Windows Management Instrumentation - T1047 |
Common Information
| Type | Value |
|---|---|
| UUID | e9c2f47f-de3d-49c5-95a8-9ca56f7d4b6d |
| Fingerprint | b61268790655865c |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | March 15, 2023, midnight |
| Added to db | March 27, 2023, 2:22 p.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | Shining Light on Dark Power: Yet Another Ransomware Gang |
| Title | Shining Light on Dark Power: Yet Another Ransomware Gang |
| Detected Hints/Tags/Attributes | 66/2/15 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 99 | ✔ | Cyware News - Latest Cyber News | https://cyware.com/allnews/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 117 | taskmgr.exe |
|
| Details | File | 99 | steam.exe |
|
| Details | File | 199 | firefox.exe |
|
| Details | File | 199 | excel.exe |
|
| Details | File | 323 | winword.exe |
|
| Details | File | 92 | powerpnt.exe |
|
| Details | File | 86 | visio.exe |
|
| Details | File | 27 | sql.exe |
|
| Details | File | 67 | oracle.exe |
|
| Details | File | 61 | dbsnmp.exe |
|
| Details | File | 409 | c:\windows\system32\cmd.exe |
|
| Details | File | 17 | malware.bin |
|
| Details | File | 10 | ary.exe |
|
| Details | sha256 | 5 | 33c5b4c9a6c24729bb10165e34ae1cd2315cfce5763e65167bd58a57fde9a389 |
|
| Details | sha256 | 7 | 11ddebd9b22a3a21be11908feda0ea1e1aa97bc67b2dfefe766fcea467367394 |