Alma Ransomware - IOC


1) Ransomware Details -Alma Ransomware
2) Encrypted Extensions - random
3) Ransom Note File - Unlock_files_randomx5.html
4) Encrypted Algorithm - AES(128)
5) Decryptor Link - https://www.google.com/url?q=https://cta-service-cms2.hubspot.com/ctas/v2/public/cs/c/?cta_guid%3Dd4173312-989b-4721-ad00-8308fff353b3%26placement_guid%3D22f2fe97-c748-4d6a-9e1e-ba3fb1060abe%26portal_id%3D326665%26redirect_url%3DAPefjpGnqFjmP_xzeUZ1Y55ovglY1y1ch7CgMDLit5GTHcW9N0ztpnIE-ZReqqv8MDj687_4Joou7Cd2rSx8-De8uhFQAD_Len9QpT7Xvu8neW5drkdtTPV7hAaou0osAi2O61dizFXibewmpO60UUCd5OazCGz1V6yT_3UFMgL0x9S1VeOvoL_ucuER8g2H3f1EfbtYBw5QFWeUmrjk-9dGzOGspyn303k9XagBtF3SSX4YWSyuEs03Vq7Fxb04KkyKc4GJx-igK98Qta8iMafUam8ikg8XKPkob0FK6Pe-wRZ0QVWIIkM%26hsutk%3D34612af1cd87864cf7162095872571d1%26utm_referrer%3Dhttps%253A%252F%252Finfo.phishlabs.com%252Fblog%252Falma-ransomware-analysis-of-a-new-ransomware-threat-and-a-decrypter%26canon%3Dhttps%253A%252F%252Finfo.phishlabs.com%252Fblog%252Falma-ransomware-analysis-of-a-new-ransomware-threat-and-a-decrypter%26__hstc%3D61627571.34612af1cd87864cf7162095872571d1.1472135921345.1472140656779.1472593507113.3%26__hssc%3D61627571.1.1472593507113%26__hsfp%3D1114323283&sa=D&ust=1498658228074000&usg=AFQjCNG_omrMcfnlyw_N5hz_pe-anN1R8g

6) Screenshots -
7) Indicators of Compromise - NA

Comments