FireCrypt
Tags
attack-pattern: Control Panel - T1218.002 Server - T1583.004 Server - T1584.004 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID eb8e8dd2-94f2-4cf0-b9e3-777975b013f2
Fingerprint 965d325f64adbe76
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 4, 2017, 10:06 p.m.
Added to db Sept. 26, 2022, 9:32 a.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline Шифровальщики-вымогатели The Digest "Crypto-Ransomware"
Title FireCrypt
Detected Hints/Tags/Attributes 26/1/21
Source URLs
Redirection Url
Details Source http://id-ransomware.blogspot.com/2017/01/bleedgreen-ransomware.html
Details Source https://id-ransomware.blogspot.co.il/2017/01/bleedgreen-ransomware.html
Details Source https://id-ransomware.blogspot.com/2017/01/bleedgreen-ransomware.html
URL Provider
Details Provider Source level domain
Details blogspot.co.il id-ransomware.blogspot.co.il
Details blogspot.com id-ransomware.blogspot.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
filecoder.dz
Details Domain 1 
firecrypt.mk
Details Domain 11 
win32.trojan.raas.auto
Details Domain 2 
www.pta.gov.pk
Details Domain 1 
lmgtfy.com
Details Domain 29 
sigaint.org
Details Email 1 
gravityz3r0@sigaint.org
Details File 2 
-read_me.html
Details File 1 
ruhsyvbqeipgjas-read_me.html
Details File 1 
-filesencrypted.html
Details File 1 
epjcyvqqiepgvre-filesencrypted.html
Details File 1 
bleedgreen.exe
Details File 1 
agpqoteweivulor.exe
Details File 1 
%appdata%\syswin32\files.txt
Details File 367 
readme.txt
Details File 1 
firecrypt.rar
Details File 1 
somefilename.exe
Details File 1 
fafas.exe
Details File 1 
shue.exe
Details File 1206 
index.php
Details File 1 
cnhzwtpnfcnftoc-read_me.html