Damage Ransomware - IOC


1) Ransomware Name - Damage

2) Encrypted Extensions - .damage

3) Ransom Note File - NA

4) Encrypted Algorithm - Combination of SHA-1 and Blowfish

5) Decryptor Link - https://www.google.com/url?q=https://decrypter.emsisoft.com/damage&sa=D&ust=1499959783565000&usg=AFQjCNHGEJPkPJgRDy_aVVgini5ge_Jlpg

6) Screenshots -


7) Indicators of Compromise -
damage@india.com


8) File Details -
the MD5 5d2a7e189def04ff148eee04e437348d
the SHA1 373f7ebe16a36a635a0975e5b1444a4451f5af7f
the SHA256 91ee8f8868e09ebde0862eca3ad3b891edf4641555046dafa95f147fa9497f1e
ssdeep24576: 1oFT2 + lvP2sA8puXHy7B6S68yI5c4GBxvP: 1ILpuMsSX5c4C
authentihash  bcf4d7413e07ec8b2f6e72a6df3d2cede8e22a072796521e973dab08db36792d
imphash  1f613d29efae446314cd2d7fa323bf65
File size 1.0 MB (1072128 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit

Comments