Enigma Ransomware - IOC


1) Ransomware Name - Enigma

2) Encrypted Extensions -
.enigma
.1txt

3) Ransom Note File -
enigma.hta
enigma_encr.txt
enigma_info.txt

4) Encrypted Algorithm - AES(128)

5) Decryptor Link - NA

6) Screenshots -


7) Indicators of Compromise - http://kf2uimw5omtgveu6.onion


8) File Details -
the MD5 229b639878c9e932ef8028d2875526b9
the SHA1 64f8759690068aa1d0d96ffb0848f51c01df5ba4
the SHA256 c4b38d19a54d44e8c2e0d4e6a457c864787a78f2d2428e94d6a43169bd3e5d55
ssdeep6144: jBiEI81DRSE7E7iVgQKbVI3t5jSAuL0 / NX6fktuG: cEI8XxFe9ZI3t5jSAuL0 / NX6fM
authentihash  dd3b5b5547a831bf2e2b03a6ce6747f129e5df1061272bca4c6175efe2d3a820
imphash  faf06c4f559676c0e370e4f92cb30d43
File size 254.5 KB (260,608 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (console) Intel 80386 32-bit

Comments