HolyCrypt Ransomware - IOC - File Details


1) Ransomware Name - HolyCrypt

2) Encrypted Extensions - (encrypted)

3) Ransom Note File - NA

4) Encrypted Algorithm - AES

5) Decryptor Link - NA

6) Screenshot -


7) Indicators of Compromise -
HolyCrypt@aol.com
http://test_ransonware.onion.link


8) File Details -
MD5 4313fd0a3d2cbedd4570230931833fe1
SHA1 8280f59248747c6901079ac6e52814606ab8cdc4
SHA256 8d372fcf8a97223ebb86cdfe707d3035dfbfd4501c5688cfa82a9a4889e637e0
ssdeep98304: / VKIRQd + TZAJPEoRgWkJgsgv4n / C2QHij4WeoM14s7Oc3b7e6l / R4ze9H: NKo4iAJcoSLi4 / C2QHTRh6o / Gy9
authentihash  C / o
imphash  b5b7cc24098123f0fc0d26869fe821b7
The size of the file is 4.9 MB (5143601 bytes)
Win32 EXE file type
DescriptionPE32 + executable for MS Windows (console) Mono / .Net assembly

Comments