ioc[.]one - OSINT Cyber Threat Intelligence Database

DeathRansom Part II: Attribution

Tags

country:	Italy Spain Russia Slovakia
maec-delivery-vectors:	Watering Hole
attack-pattern:	Indirect Control Panel - T1218.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566

Show in Graph

Common Information

Type	Value
UUID	eea38a42-cdd9-42f1-96f9-08132cdc49c3
Fingerprint	ae15099b8e33074d
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 2, 2020, midnight
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Nov. 12, 2024, 7:58 a.m.
Headline	DeathRansom Part II: Attribution
Title	DeathRansom Part II: Attribution
Detected Hints/Tags/Attributes	62/3/30

Source URLs

	Redirection	Url
Details	Source	https://www.fortinet.com/blog/threat-research/death-ransom-attribution.html

URL Provider

Details	Provider	Source level domain
Details	fortinet.com	www.fortinet.com

Attributes

Details	Type	#Events	Value
Details	Domain	78	bitbucket.org
Details	Domain	1	scat01.tk
Details	Domain	1	gameshack.ru
Details	Domain	119	yandex.ru
Details	Domain	2	yandex.market
Details	Domain	1	csgo-stats.net
Details	Domain	47	iplogger.org
Details	Domain	1	scat01.mcdir.ru
Details	Email	1	vitasa01@yandex.ru
Details	File	2	wacatac_2019-11-20_00-10.exe
Details	File	1	wacatac_2019-11-16_14-06.exe
Details	File	1	scat01_2019-05-20_06-13.exe
Details	File	1	wacatac_2019-11-16_17-03.exe
Details	File	1	scat01.exe
Details	File	1	supreme.exe
Details	sha256	2	13d263fb19d866bb929f45677a9dcbb683df5e1fa2e1b856fde905629366c5e1
Details	sha256	1	dc9ff5148e26023cf7b6fb69cd97d6a68f78bb111dbf39039f41ed05e16708e4
Details	sha256	1	a45a75582c4ad564b9726664318f0cccb1000005d573e594b49e95869ef25284
Details	sha256	1	e767706429351c9e639cfecaeb4cdca526889e4001fb0c25a832aec18e6d5e06
Details	sha256	1	1e1fcb1bcc88576318c37409441fd754577b008f4678414b60a25710e10d4251
Details	sha256	1	05b762354678004f8654e6da38122e6308adf3998ee956566b8f5d313dc0e029
Details	sha256	1	0cf124b2afc3010b72abdc2ad8d4114ff1423cce74776634db4ef6aaa08af915
Details	sha256	1	2b9c53b965c3621f1fa20e0ee9854115747047d136529b41872a10a511603df8
Details	sha256	1	4bc383a4daff74122b149238302c5892735282fa52cac25c9185347b07a8c94c
Details	sha256	1	6247f283d916b1cf0c284f4c31ef659096536fe05b8b9d668edab1e1b9068762
Details	sha256	1	66ee3840a9722d3912b73e477d1a11fd0e5468769ba17e5e71873fd519e76def
Details	sha256	1	f78a743813ab1d4eee378990f3472628ed61532e899503cc9371423307de3d8b
Details	sha256	1	fedb4c3b0e080fb86796189ccc77f99b04adb105d322bddd3abfca2d5c5d43c8
Details	Url	1	http://bitbucket.org/scat01/1/downloads/wacatac_2019-11-16_14-06.exe
Details	Url	1	http://gameshack.ru/scat01.exe