Scarab-Omerta
Tags
| country: | India Turkey |
| attack-pattern: | Data Software - T1592.002 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | ee57a9ac-a2b7-4c7d-ad15-0f8dc8967ee4 |
| Fingerprint | 6c75a7e26773e13 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | July 5, 2018, 1 p.m. |
| Added to db | Jan. 18, 2023, 7:54 p.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | Scarab-Omerta |
| Detected Hints/Tags/Attributes | 31/2/39 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://id-ransomware.blogspot.com/2018/07/scarab-omerta-ransomware.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 99 | india.com |
|
| Details | Domain | 14 | iplogger.com |
|
| Details | Domain | 911 | any.run |
|
| Details | Domain | 14 | pm.me |
|
| Details | Domain | 396 | protonmail.com |
|
| Details | Domain | 162 | localbitcoins.com |
|
| Details | Domain | 68 | www.coindesk.com |
|
| Details | Domain | 287 | yahoo.com |
|
| Details | Domain | 14 | bitmessage.org |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | Domain | 246 | mail.ru |
|
| Details | Domain | 1174 | gmail.com |
|
| Details | Domain | 49 | ukr.net |
|
| Details | 1 | recoveryyourdata@india.com |
||
| Details | 1 | my_documents.pdf.[recoveryyourdata@india.com |
||
| Details | 1 | others_documents.doc.[recoveryyourdata@india.com |
||
| Details | 1 | restoreyourdata@india.com |
||
| Details | 1 | xavax@pm.me |
||
| Details | 1 | vankacrypter@protonmail.com |
||
| Details | 1 | monez@protonmail.com |
||
| Details | 4 | gdecryptor5@yahoo.com |
||
| Details | 1 | ygod123@pm.me |
||
| Details | 1 | y0urgod@protonmail.com |
||
| Details | 1 | starcrypt@tutanota.com |
||
| Details | 1 | starcrypt@protonmail.com |
||
| Details | 3 | patern32@protonmail.com |
||
| Details | File | 1 | my_documents.pdf |
|
| Details | File | 1 | others_documents.doc |
|
| Details | File | 5 | back.txt |
|
| Details | File | 1 | wxmon.exe |
|
| Details | File | 6 | sevnz.exe |
|
| Details | File | 1 | winupmgr.exe |
|
| Details | File | 1 | %appdata%\microsoft\wxmon.exe |
|
| Details | File | 1 | %appdata%\microsoft\windows\winupmgr.exe |
|
| Details | File | 1 | c:\users\admin\appdata\roaming\sevnz.exe |
|
| Details | File | 2 | %appdata%\sevnz.exe |
|
| Details | Url | 52 | https://localbitcoins.com/buy_bitcoins |
|
| Details | Url | 41 | http://www.coindesk.com/information/how-can-i-buy-bitcoins |
|
| Details | Url | 8 | https://bitmessage.org/wiki/main_page |