Deadly for a Good Purpose Ransomware - IOC


1) Ransomware Name - Deadly for a Good Purpose

2) Encrypted Extensions - NA

3) Ransom Note File - NA

4) Encrypted Algorithm - AES-256

5) Decryptor Link - NA

6) Screenshots -

7) Indicators of Compromise -
gravityz3r@sigant.org



8) File Details -
the MD5 d58120d5c94a54953a1022fd891c052e
the SHA1 dcbec9980b31a3f9074b06adc1410513011cee7b
the SHA256 a324e99b479679e2bc33f02aa82e8fb647edf3aff6cd9b1005ea425498d4ae64
ssdeep1536: 6tWInVpmGktHDgbETH7GXCRvWQQkZYSZ9thSItch7Gc + bwQX: 4WltHVHKXCRvWW // SItg7F + bL
authentihash  17801f8087390765075d5a6d7b1dee7de9f1296d4342e85eb0049c4ce6b25524
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
File size 68.5 KB (70144 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono / .Net assembly

the MD5 e75e5802688be6cca08afa63761fcff3
the SHA1 db3e5b1d931215f6dda0d2ec2d2b4a0ec9bd1f91
the SHA256 5bf2a47fb04fcb5890b487a607db5ca683a990859fe17e70ca685a85c99358aa
ssdeep1536: RAHMwuHpbwI96zFvKgbETH7GXCRvWQQkZYSZ9thY + 06Bl: yHMwWbw6KdcHKXCRvWW // Y + pr
authentihash  0f1864f2e98d93fe13b65377de796b4bcf23bc465adc5c5ca24e45bc52413848
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
File size 53.0 KB (54272 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 Mono / .Net assembly

the MD5 85b9394cca22148e3fc11d2f12b48f69
the SHA1 fdf6778425bb6a7bcb53ff1633e01c24ee1e2094
the SHA256 08ee6b215a2e0e26223a7485e0e0fd125bddcae513434446b928a2411f8d3a7f
ssdeep
authentihash  a2ba933676742195cd2c52ff63e3c909d299f67c387f101c2c15d38d2570329c
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
File size 69.0 KB (70656 bytes)
File type unknown
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono / .Net assembly

Comments