Apocalypse Ransomware - IOC


1) Ransomware Name - Apocalypse
2) Encrypted Extensions -
.encrypted
.SecureCrypted
.FuckYourData
.unavailable
.bleepYourFiles
.Where_my_files.txt
3) Ransom Note File - Decryption Instructions.tyt
4) Encrypted Algorithm - AES(256)
5) Decryptor Link - NA
6) Screenshots -

7) Indicators of Compromise -
decryptionservice@mail.ru
decryptservice@inbox.ru
recoveryhelp@bk.ru
ransomware.attack@list.ru
esmeraldaencryption@mail.ru
dr.compress@bk.ru

8) File Details -
MD5 e5369ac309f1be6d77afeeb3edab0ed8
SHA1 b7afd3c57b074109bf576b77b33d641fd8e87871
SHA256 478383fb588665c254d416b7c50a124f82291124b002d9bad9fd758a59fd728f
ssdeep384:iX8Obeab6xAraECxkJ7PfXXqHbiqZZK09QmY1fTgT01p1MN/9bZYVJCrZWMMF:i3lvaEcktUic5imoYC0Z3OF
authentihash  5d764ee2d6355e2437a87a38510a6e83ddb52d976976d9e28300e2124583786c
imphash  a2cd52cf31250cbc8e01c8c970423a4b
File size 18.0 KБ ( 18432 bytes )
File type Win32 EXE
Magic literalPE32 executable for MS Windows (GUI) Intel 80386 32-bit

Comments