CryptoBlock Ransomware - IOC


1) Ransomware Name - CryptoBlock

2) Encrypted Extensons - NA

3) Ransom Note File - NA

4) Encrypted Algprithm - RSA-2048

5) Decryptor Link - NA

6) Screenshots -


7) Indicators of Compromise - www.filecrypter.in (138.201.207.84:80)




8) File Details -
the MD5 8fe475eb948544b35433151a3b91bfd5
the SHA1 dceb219d195d2ebb07b32d65d2c17fce62e45f4e
the SHA256 b275c68335e16de6218a98a59b42b966e6e5400f8bff9084d3caa9f45167bf84
ssdeep98304: J3aBZ8Q0QUH636phpqZ2IZEP5MnojlAzza3Mb6TfbpNQH: M8a36pSZPdn0SzzoMb6TbpNQH
authentihash  c4dfc7f9c44357836700b3a2fcaa9cb0fe6833c1e6c2cf831c901ccd70c652ae
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
File size 3.9 MB (4088320 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono / .Net assembly

Comments