Akira Ransomware Unleashing Chaos using Conti Leaks - K7 Labs
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Remote Desktop Protocol - T1021.001 Software - T1592.002 Vulnerabilities - T1588.006 Powershell - T1086 Remote Desktop Protocol - T1076
Show in Graph
Common Information
Type Value
UUID ef715388-7172-4aac-9c26-a027ebd98b0e
Fingerprint b63621593a57b250
Analysis status DONE
Considered CTI value 2
Text language
Published May 26, 2023, 9:50 a.m.
Added to db May 26, 2023, 2:33 p.m.
Last updated Nov. 18, 2024, 10:24 a.m.
Headline Akira Ransomware Unleashing Chaos using Conti Leaks
Title Akira Ransomware Unleashing Chaos using Conti Leaks - K7 Labs
Detected Hints/Tags/Attributes 69/2/11
Source URLs
Redirection Url
Details Source https://labs.k7computing.com/index.php/akira-ransomware-unleashing-chaos-using-conti-leaks/
URL Provider
Details Provider Source level domain
Details k7computing.com labs.k7computing.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 150 K7 Labs https://labs.k7computing.com/?feed=rss2 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
akiralkzxzq2dsrzsrvbr2xgbbu2wgsmxryd4csgfameg52n7efvr2id.onion
Details File 478 
lsass.exe
Details File 1211 
powershell.exe
Details File 26 
akira_readme.txt
Details md5 1 
C7AE7F5BECB7CF94AA107DDC1CAF4B03
Details md5 1 
E44EB48C7F72FFAC5AF3C7A37BF80587
Details md5 1 
AF95FBCF9DA33352655F3C2BAB3397E2
Details md5 1 
431D61E95586C03461552D134CA54D16
Details md5 1 
D25890A2E967A17FF3DAD8A70BFDD832
Details Url 1 
https://akiralkzxzq2dsrzsrvbr2xgbbu2wgsmxryd4csgfameg52n7efvr2id.onion
Details Windows Registry Key 164 
HKLM\SOFTWARE\Microsoft\Windows