Fantom Ransomware - IOC


1) Ransomware Name - Fantom

2) Encrypted Extensions -
.fantom
.comrade

3) Ransom Note File -
DECRYPT_YOUR_FILES.HTML
RESTORE-FILES![id]

4) Encrypted Algorithm - AES(128) , RSA-4096 and AES-25

5) Decryptor Link - NA

6) Screenshots -

7) Indicators of Compromise -
fantomd12@yandex.ru
fantom12@techemail.com
http://powertoolsforyou.com/themes/prestashop/cache/stats.php
http://templatesupdates.dlinkddns.com/falssk/fksgieksi.php
fixfiles@protonmail.ch


8) File Details - NA

Comments