Genel Bakış

Cuba, kritik altyapıyı hedefler.

MalwareBazaar İstihbarat Verileri

Hash Örnekleri (İlk 50)

SHA256MD5İlk GörülmeTipBoyut
d3f847b27ee6cd4f85a3... c711a836a577acf6... 2024-02-15 exe 2.658.816
6ce206a1e1224e0a9d29... 26c09228e76764a2... 2022-11-24 unknown 159
c45d7d27cb6977f92941... ef5288de2df2314f... 2022-03-08 zip 519.474
e1150b9bca30b2eca858... 35f842275a6aa4c8... 2022-03-08 zip 516.402
517b00c25a7cb02dfb7a... 0b3f3fef189daa00... 2022-03-08 zip 519.474
11a22093931e87f7b281... 2b84d687d35a87b1... 2022-03-08 zip 487.218
51c652eac92fe9ce5c22... 77a5260ef8df6a05... 2022-03-08 zip 487.218
4ec8cb9d91bd97d75b86... e851d6b1a04669fa... 2022-03-08 zip 487.730
28c50b97aed33e25cfd0... 4496b3c9c7c044b3... 2022-03-08 zip 484.146
57d2f35ff7be6a5e7211... 3466399cfa71f853... 2022-03-08 zip 375.602
1cad3cdcebd6668b3e5e... e75027e0a9558965... 2022-03-08 zip 375.602
936119bc1811aeef0129... c0451fd7921342e0... 2021-12-24 exe 148.480
482b160ee2e8d94fa6e4... 20a04e7fc12259df... 2021-12-24 exe 148.480
33352a38454cfc247bc7... d8fd19fef4605b42... 2021-05-06 exe 164.352
9882c2f5a95d76806264... f739977004981fbe... 2020-08-03 ps1 552.073
271ef3c1d022829f0b15... a12e733ddbe6f404... 2020-08-03 exe 1.156.608

IOC Özeti

  • Bu analiz 16 adet benzersiz Cuba örneğini kapsar.
  • Toplam 32 hash IOC kayıt altına alındı.
  • Kampanya aktivitesi: 2020-08-03 ile 2024-02-15 arasında tespit edildi.

Cuba — Malware Profile

Cuba, kritik altyapıyı hedefler.

Malware Type
Ransomware
Programming Language
C++
C2 Protocol
Target Systems
Windows
Also Known As (AKA)
COLDDRAW

Capabilities & Behavior

Dosya Şifreleme (AES/RSA)
Gölge Kopya Silme
Yedek Kaldırma
Fidye Notu Oluşturma
Kalıcılık Sağlama
Ağ Paylaşımı Şifreleme
Anti-Analiz Teknikleri
Çift Gasp (Data Leak)

IOC List (64 indicators)

IOC — Cuba
# SHA256 d3f847b27ee6cd4f85a3393131f85f28750761fd59dd2aac95d5a8fa235d46dd # SHA256 6ce206a1e1224e0a9d296d5fabffee7fe5ab45ef00299a21e8df66e8c6ba5a27 # SHA256 c45d7d27cb6977f929410fae37b4da38dfd14abcab36f0433f3cf1c3668144fa # SHA256 e1150b9bca30b2eca8580636f763619b612a0e046e5dfcd5ad352d01af33e85c # SHA256 517b00c25a7cb02dfb7a98fa41e5d805c38ff03c107b0a0a2c385bb203a140ab # SHA256 11a22093931e87f7b28191643bbf9023e423e8a08cca2fe56b3d466c051d96a6 # SHA256 51c652eac92fe9ce5c22cdd20212523b2bc9c8381d5bb5a46cc55bfa280191d5 # SHA256 4ec8cb9d91bd97d75b86d7a22e0caf499c5fbc9edc4a48d838bf77610a736d30 # SHA256 28c50b97aed33e25cfd07f83ad3e84513ad45ffc96764ef365124255414e9459 # SHA256 57d2f35ff7be6a5e72110988d0294cd8d50afe4bc341fa5e869e1774aea27854 # SHA256 1cad3cdcebd6668b3e5e10c4656be139cd5f179fbee0114592bf5d17f85ee9b2 # SHA256 936119bc1811aeef01299a0150141787865a0dbe2667288f018ad24db5a7bc27 # SHA256 482b160ee2e8d94fa6e4749f77e87da89c9658e7567459bc633d697430e3ad9a # SHA256 33352a38454cfc247bc7465bf177f5f97d7fd0bd220103d4422c8ec45b4d3d0e # SHA256 9882c2f5a95d7680626470f6c0d3609c7590eb552065f81ab41ffe074ea74e82 # SHA256 271ef3c1d022829f0b15f2471d05a28d4786abafd0a9e1e742bde3f6b36872ad # SHA256 d3f847b27ee6cd4f85a3393131f85f28750761fd59dd2aac95d5a8fa235d46dd # SHA256 6ce206a1e1224e0a9d296d5fabffee7fe5ab45ef00299a21e8df66e8c6ba5a27 # SHA256 c45d7d27cb6977f929410fae37b4da38dfd14abcab36f0433f3cf1c3668144fa # SHA256 e1150b9bca30b2eca8580636f763619b612a0e046e5dfcd5ad352d01af33e85c # SHA256 517b00c25a7cb02dfb7a98fa41e5d805c38ff03c107b0a0a2c385bb203a140ab # SHA256 11a22093931e87f7b28191643bbf9023e423e8a08cca2fe56b3d466c051d96a6 # SHA256 51c652eac92fe9ce5c22cdd20212523b2bc9c8381d5bb5a46cc55bfa280191d5 # SHA256 4ec8cb9d91bd97d75b86d7a22e0caf499c5fbc9edc4a48d838bf77610a736d30 # SHA256 28c50b97aed33e25cfd07f83ad3e84513ad45ffc96764ef365124255414e9459 # SHA256 57d2f35ff7be6a5e72110988d0294cd8d50afe4bc341fa5e869e1774aea27854 # SHA256 1cad3cdcebd6668b3e5e10c4656be139cd5f179fbee0114592bf5d17f85ee9b2 # SHA256 936119bc1811aeef01299a0150141787865a0dbe2667288f018ad24db5a7bc27 # SHA256 482b160ee2e8d94fa6e4749f77e87da89c9658e7567459bc633d697430e3ad9a # SHA256 33352a38454cfc247bc7465bf177f5f97d7fd0bd220103d4422c8ec45b4d3d0e # SHA256 9882c2f5a95d7680626470f6c0d3609c7590eb552065f81ab41ffe074ea74e82 # SHA256 271ef3c1d022829f0b15f2471d05a28d4786abafd0a9e1e742bde3f6b36872ad # MD5 c711a836a577acf6a018c1c20d395eb1 # MD5 26c09228e76764a2002ba643afeb9415 # MD5 ef5288de2df2314f0e2fed395351ed25 # MD5 35f842275a6aa4c81c07ec849d4dc249 # MD5 0b3f3fef189daa00e152991ac5e59ee6 # MD5 2b84d687d35a87b1eca60fb65a8b942f # MD5 77a5260ef8df6a05cdcc87f775786d03 # MD5 e851d6b1a04669fad823383c4f51eb15 # MD5 4496b3c9c7c044b38c9bcc10b0c52766 # MD5 3466399cfa71f85378c99197daf914fe # MD5 e75027e0a95589659aecc9544f97320b # MD5 c0451fd7921342e0d2fbf682091d4280 # MD5 20a04e7fc12259dfd4172f5232ed5ccf # MD5 d8fd19fef4605b4217cb2546c470a918 # MD5 f739977004981fbe4a54bc68be18ea79 # MD5 a12e733ddbe6f404b27474fa0e5de61d # MD5 c711a836a577acf6a018c1c20d395eb1 # MD5 26c09228e76764a2002ba643afeb9415 # MD5 ef5288de2df2314f0e2fed395351ed25 # MD5 35f842275a6aa4c81c07ec849d4dc249 # MD5 0b3f3fef189daa00e152991ac5e59ee6 # MD5 2b84d687d35a87b1eca60fb65a8b942f # MD5 77a5260ef8df6a05cdcc87f775786d03 # MD5 e851d6b1a04669fad823383c4f51eb15 # MD5 4496b3c9c7c044b38c9bcc10b0c52766 # MD5 3466399cfa71f85378c99197daf914fe # MD5 e75027e0a95589659aecc9544f97320b # MD5 c0451fd7921342e0d2fbf682091d4280 # MD5 20a04e7fc12259dfd4172f5232ed5ccf # MD5 d8fd19fef4605b4217cb2546c470a918 # MD5 f739977004981fbe4a54bc68be18ea79 # MD5 a12e733ddbe6f404b27474fa0e5de61d
TypeValueNote
sha256 d3f847b27ee6cd4f85a3393131f85f28750761fd59dd2aac95d5a8fa235d46dd MB:Cuba
sha256 6ce206a1e1224e0a9d296d5fabffee7fe5ab45ef00299a21e8df66e8c6ba5a27 MB:Cuba
sha256 c45d7d27cb6977f929410fae37b4da38dfd14abcab36f0433f3cf1c3668144fa MB:Cuba
sha256 e1150b9bca30b2eca8580636f763619b612a0e046e5dfcd5ad352d01af33e85c MB:Cuba
sha256 517b00c25a7cb02dfb7a98fa41e5d805c38ff03c107b0a0a2c385bb203a140ab MB:Cuba
sha256 11a22093931e87f7b28191643bbf9023e423e8a08cca2fe56b3d466c051d96a6 MB:Cuba
sha256 51c652eac92fe9ce5c22cdd20212523b2bc9c8381d5bb5a46cc55bfa280191d5 MB:Cuba
sha256 4ec8cb9d91bd97d75b86d7a22e0caf499c5fbc9edc4a48d838bf77610a736d30 MB:Cuba
sha256 28c50b97aed33e25cfd07f83ad3e84513ad45ffc96764ef365124255414e9459 MB:Cuba
sha256 57d2f35ff7be6a5e72110988d0294cd8d50afe4bc341fa5e869e1774aea27854 MB:Cuba
sha256 1cad3cdcebd6668b3e5e10c4656be139cd5f179fbee0114592bf5d17f85ee9b2 MB:Cuba
sha256 936119bc1811aeef01299a0150141787865a0dbe2667288f018ad24db5a7bc27 MB:Cuba
sha256 482b160ee2e8d94fa6e4749f77e87da89c9658e7567459bc633d697430e3ad9a MB:Cuba
sha256 33352a38454cfc247bc7465bf177f5f97d7fd0bd220103d4422c8ec45b4d3d0e MB:Cuba
sha256 9882c2f5a95d7680626470f6c0d3609c7590eb552065f81ab41ffe074ea74e82 MB:Cuba
sha256 271ef3c1d022829f0b15f2471d05a28d4786abafd0a9e1e742bde3f6b36872ad MB:Cuba
sha256 d3f847b27ee6cd4f85a3393131f85f28750761fd59dd2aac95d5a8fa235d46dd MB:Cuba
sha256 6ce206a1e1224e0a9d296d5fabffee7fe5ab45ef00299a21e8df66e8c6ba5a27 MB:Cuba
sha256 c45d7d27cb6977f929410fae37b4da38dfd14abcab36f0433f3cf1c3668144fa MB:Cuba
sha256 e1150b9bca30b2eca8580636f763619b612a0e046e5dfcd5ad352d01af33e85c MB:Cuba
sha256 517b00c25a7cb02dfb7a98fa41e5d805c38ff03c107b0a0a2c385bb203a140ab MB:Cuba
sha256 11a22093931e87f7b28191643bbf9023e423e8a08cca2fe56b3d466c051d96a6 MB:Cuba
sha256 51c652eac92fe9ce5c22cdd20212523b2bc9c8381d5bb5a46cc55bfa280191d5 MB:Cuba
sha256 4ec8cb9d91bd97d75b86d7a22e0caf499c5fbc9edc4a48d838bf77610a736d30 MB:Cuba
sha256 28c50b97aed33e25cfd07f83ad3e84513ad45ffc96764ef365124255414e9459 MB:Cuba
sha256 57d2f35ff7be6a5e72110988d0294cd8d50afe4bc341fa5e869e1774aea27854 MB:Cuba
sha256 1cad3cdcebd6668b3e5e10c4656be139cd5f179fbee0114592bf5d17f85ee9b2 MB:Cuba
sha256 936119bc1811aeef01299a0150141787865a0dbe2667288f018ad24db5a7bc27 MB:Cuba
sha256 482b160ee2e8d94fa6e4749f77e87da89c9658e7567459bc633d697430e3ad9a MB:Cuba
sha256 33352a38454cfc247bc7465bf177f5f97d7fd0bd220103d4422c8ec45b4d3d0e MB:Cuba
sha256 9882c2f5a95d7680626470f6c0d3609c7590eb552065f81ab41ffe074ea74e82 MB:Cuba
sha256 271ef3c1d022829f0b15f2471d05a28d4786abafd0a9e1e742bde3f6b36872ad MB:Cuba
md5 c711a836a577acf6a018c1c20d395eb1 MB:Cuba
md5 26c09228e76764a2002ba643afeb9415 MB:Cuba
md5 ef5288de2df2314f0e2fed395351ed25 MB:Cuba
md5 35f842275a6aa4c81c07ec849d4dc249 MB:Cuba
md5 0b3f3fef189daa00e152991ac5e59ee6 MB:Cuba
md5 2b84d687d35a87b1eca60fb65a8b942f MB:Cuba
md5 77a5260ef8df6a05cdcc87f775786d03 MB:Cuba
md5 e851d6b1a04669fad823383c4f51eb15 MB:Cuba
md5 4496b3c9c7c044b38c9bcc10b0c52766 MB:Cuba
md5 3466399cfa71f85378c99197daf914fe MB:Cuba
md5 e75027e0a95589659aecc9544f97320b MB:Cuba
md5 c0451fd7921342e0d2fbf682091d4280 MB:Cuba
md5 20a04e7fc12259dfd4172f5232ed5ccf MB:Cuba
md5 d8fd19fef4605b4217cb2546c470a918 MB:Cuba
md5 f739977004981fbe4a54bc68be18ea79 MB:Cuba
md5 a12e733ddbe6f404b27474fa0e5de61d MB:Cuba
md5 c711a836a577acf6a018c1c20d395eb1 MB:Cuba
md5 26c09228e76764a2002ba643afeb9415 MB:Cuba
md5 ef5288de2df2314f0e2fed395351ed25 MB:Cuba
md5 35f842275a6aa4c81c07ec849d4dc249 MB:Cuba
md5 0b3f3fef189daa00e152991ac5e59ee6 MB:Cuba
md5 2b84d687d35a87b1eca60fb65a8b942f MB:Cuba
md5 77a5260ef8df6a05cdcc87f775786d03 MB:Cuba
md5 e851d6b1a04669fad823383c4f51eb15 MB:Cuba
md5 4496b3c9c7c044b38c9bcc10b0c52766 MB:Cuba
md5 3466399cfa71f85378c99197daf914fe MB:Cuba
md5 e75027e0a95589659aecc9544f97320b MB:Cuba
md5 c0451fd7921342e0d2fbf682091d4280 MB:Cuba
md5 20a04e7fc12259dfd4172f5232ed5ccf MB:Cuba
md5 d8fd19fef4605b4217cb2546c470a918 MB:Cuba
md5 f739977004981fbe4a54bc68be18ea79 MB:Cuba
md5 a12e733ddbe6f404b27474fa0e5de61d MB:Cuba
Tags
bulkiocmalwarebazaarransomwarecuba