FenixLocker Ransomware - IOC


1) Ransomware Name - FenixLocker

2) Encrypted Extensions - .FenixIloveyou!!

3) Ransom Note File -
Help to decrypt.txt
CryptoLocker.txt

4) Encrypted Algorithm - NA

5) Decryptor Link - https://www.google.com/url?q=https://decrypter.emsisoft.com/fenixlocker&sa=D&ust=1503414573975000&usg=AFQjCNHJ_K2cHzctyzTjalAjlpodUeJS_g


6) Screenshots -


7) Indicators of Compromise -
centrumfr@india.comthedon78@mail.com


8) File Details -

MD5 e428317a9d22460f7c034f2302a10768
SHA1 6626d26899d272d8166f02032af535f4e9a616fa
SHA256 8a84651d5c1c2d98452d27244a426649d198db31f52e5ac595d50f7c910d6b56
Ssdeep6144: VbM4HSRXMvdyBOj1 + XSqTwAogl3Bgim9Ve8Xrn8QtfYOzvD9HHUaIIMZv8o6Ezef: NMnRXYxEZoskVslorLIlBmEKH /
Authentihash  E18d725d16fb579c877af3e13e08e7917328638fece69411f470d7af18c80646
Imphash  748a61bb2c137db6c403ddbb1b11891b
The size of the file is 380.7 KB (389858 bytes)
Win32 EXE file type
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit

Comments