BTCWare-Gryphon
Tags
| country: | India |
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | f6b861be-0e99-40f1-935d-16b47ecfe8bd |
| Fingerprint | 9695c9ff72fe1a39 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | July 31, 2017, 12:31 a.m. |
| Added to db | Jan. 18, 2023, 7:52 p.m. |
| Last updated | Nov. 17, 2024, 10:40 p.m. |
| Headline | Шифровальщики-вымогатели The Digest "Crypto-Ransomware" |
| Title | BTCWare-Gryphon |
| Detected Hints/Tags/Attributes | 27/2/42 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://id-ransomware.blogspot.com/2017/07/btcware-gryphon.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 144 | cock.li |
|
| Details | Domain | 9 | bigmir.net |
|
| Details | Domain | 89 | protonmail.ch |
|
| Details | Domain | 396 | protonmail.com |
|
| Details | Domain | 99 | qq.com |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | Domain | 158 | aol.com |
|
| Details | Domain | 99 | india.com |
|
| Details | Domain | 7 | aolonline.top |
|
| Details | Domain | 4 | black.world |
|
| Details | Domain | 83 | tuta.io |
|
| Details | Domain | 24 | gmx.de |
|
| Details | Domain | 46 | firemail.cc |
|
| Details | 3 | decr@cock.li |
||
| Details | 2 | decrsup@cock.li |
||
| Details | 2 | payoff@cock.li |
||
| Details | 2 | payoff@bigmir.net |
||
| Details | 5 | chines34@protonmail.ch |
||
| Details | 5 | oceannew_vb@protonmail.com |
||
| Details | 2 | garryhelpyou@qq.com |
||
| Details | 2 | garrymagic@tutanota.com |
||
| Details | 3 | gladius_rectus@aol.com |
||
| Details | 2 | gladius_rectus@india.com |
||
| Details | 2 | macgregor@aolonline.top |
||
| Details | 2 | universe1@protonmail.ch |
||
| Details | 2 | universe11@bigmir.net |
||
| Details | 3 | payfordecrypt@qq.com |
||
| Details | 2 | crypthelp@qq.com |
||
| Details | 4 | black.world@tuta.io |
||
| Details | 2 | darkwaiderr@tutanota.com |
||
| Details | 2 | darkwaiderr@gmx.de |
||
| Details | 2 | decrypt24@protonmail.com |
||
| Details | 3 | asdqwer123@cock.li |
||
| Details | 3 | assistance@firemail.cc |
||
| Details | 3 | goldwave@india.com |
||
| Details | 2 | blackworld@cock.li |
||
| Details | 3 | fidel_romposo@aol.com |
||
| Details | File | 16 | help.txt |
|
| Details | File | 2126 | cmd.exe |
|
| Details | File | 345 | vssadmin.exe |
|
| Details | File | 105 | bcdedit.exe |
|
| Details | File | 1 | %appdata%\help.txt |