Mailto (NetWalker) Ransomware Targets Enterprise Networks
Tags
| attack-pattern: | Data Email Addresses - T1589.002 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | ef6074d3-abe0-4dc9-ba2c-532ae2f062e9 |
| Fingerprint | b76220d9365fb65d |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 5, 2020, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Nov. 12, 2024, 11:47 a.m. |
| Headline | Mailto (NetWalker) Ransomware Targets Enterprise Networks |
| Title | Mailto (NetWalker) Ransomware Targets Enterprise Networks |
| Detected Hints/Tags/Attributes | 34/1/9 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 144 | cock.li |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | 1 | 1.doc.mailto[sevenoneone@cock.li |
||
| Details | 3 | sevenoneone@cock.li |
||
| Details | 3 | kavariusing@tutanota.com |
||
| Details | File | 29 | 1.doc |
|
| Details | File | 15 | -readme.txt |
|
| Details | File | 1 | 77d8b-readme.txt |
|
| Details | sha256 | 1 | 416556c9f085ae56e13f32d7c8c99f03efc6974b2897070f46ef5f9736443e8e |