Central Security Treatment Organization Ransomware - IOC


1) Ransomware Name - Central Security Treatment Organization

2) Encrypted Extensions - .cry

3) Ransom Note File -
!Recovery_[random_chars].html
!Recovery_[random_chars].txt

4) Encrypted Algorithm - NA

5) Decryptor Link - NA

6) Screenshots -



7) Indicators of Compromise -
http://imgur.com
https://pastee.org/
https://maps.googleapis.com
UDP Traffic to ip addresses in the 37.x.x.x range



8) File Details - NA

Comments