ioc[.]one - OSINT Cyber Threat Intelligence Database

Embargo Ransomware IOCs - Part 2 - SEC-1275-1

Tags

attack-pattern:

Powershell - T1059.001 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	ea6c9e6d-1eab-445b-81f3-5bcd910d8f5e
Fingerprint	3c96e2e4d816461b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 5, 2024, midnight
Added to db	Nov. 5, 2024, 8:50 a.m.
Last updated	Nov. 5, 2024, 8:50 a.m.
Headline	Embargo Ransomware IOCs - Part 2
Title	Embargo Ransomware IOCs - Part 2 - SEC-1275-1
Detected Hints/Tags/Attributes	8/1/5

Source URLs

	Redirection	Url
Details	Source	https://1275.ru/ioc/7845/embargo-ransomware-iocs-part-2/?mtm_campaign=rss

URL Provider

Details	Provider	Source level domain
Details	1275.ru	1275.ru

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	8	✔	Архивы IOC - SEC-1275-1	https://1275.ru/ioc/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	File	5		probmon.sys
Details	sha256	1		0d2619844a3ab68ee18c3a4768b10e6b8aea31143023277883b7ff9f7a9e55ca
Details	sha256	1		6e349195bdc65a1964367317ba14b905440d75398c3fbb1911c3400082d7f149
Details	sha256	1		ca601708a3822d4f1fbea39171c8d5e94c0b8741f35a5a2fb63cd6d71da29b1a
Details	sha256	1		ebffc9ced2dba66db9aae02c7ccd2759a36c5167df5cd4adb151b20e7eab173c