Malware Signature

The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with Ransomware

Database Entry


Malware:Ransomware
First seen:2014-12-12 01:51:48 UTC
Last seen:2019-06-17 14:30:59 UTC

Malware Samples


The table below documents all malware samples associated with this malware family.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-10-07 12:33:4684bb84c1dbdaab383947ce2ede0c8154Virustotal results 25/57 (43.86%) Ransomware95.46.99.21:443
2016-10-01 14:12:5759c79a399dfabacc293a197dca48c1e4Virustotal results 20/57 (35.09%) Ransomware95.46.99.21:443
2016-09-27 20:49:2630a5b061329c3e8760d7309299a011bcVirustotal results 19/57 (33.33%) Ransomware95.46.99.21:443
2016-09-26 17:14:5760dfd08f82dee2a33604271f08f62734Virustotal results 30/57 (52.63%) Ransomware95.46.99.21:443
2016-09-24 12:14:1122d2aa61aa9eb859d10708703ddb8353Virustotal results 23/57 (40.35%) Ransomware95.46.99.21:443
2016-09-24 01:59:39c641e71562634c9fc95e7e9af20aa8c4Virustotal results 22/57 (38.60%) Ransomware95.46.99.21:443
2016-09-23 15:25:34f50a639b41e6a6bd838e0d9d62e760bfVirustotal results 32/57 (56.14%) Ransomware95.46.99.21:443
2016-09-23 13:19:4815caa32d2460262a5a204572f97b551fVirustotal results 24/57 (42.11%) Ransomware95.46.99.21:443
2016-09-21 14:31:229eebb265f952b710042b211eb080e342Virustotal results 34/57 (59.65%) Ransomware95.46.99.21:443
2016-09-20 23:58:3334e03f9094e72ca9e02c941495e8717fVirustotal results 31/57 (54.39%) Ransomware95.46.99.21:443
2016-09-20 22:40:05600d6ca170a56515e68f6552f141ed45Virustotal results 12/58 (20.69%) Ransomware95.46.99.21:443
2016-09-20 05:13:58bbbf7c20eeea79b164264658c52b5b02Virustotal results 9/57 (15.79%) Ransomware95.46.99.21:443
2016-09-19 19:04:03d0b3db501c70e42a771c42927c2a5850Virustotal results 9/57 (15.79%) Ransomware95.46.99.21:443
2016-09-15 14:47:21e50740c2a10e4f5334ecbd44b08054f6Virustotal results 14/58 (24.14%) Ransomware95.46.99.21:443
2016-09-15 02:02:43a927896b1763065cfd7a2d01b8f9b6cdVirustotal results 28/57 (49.12%) Ransomware95.46.99.21:443
2016-09-14 00:28:3870a3228c561b658b7f77113d0db7126fVirustotal results 24/57 (42.11%) Ransomware95.46.99.21:443
2016-09-08 19:13:1053ca6c89af8103268d0b7a7f559e555cVirustotal results 12/57 (21.05%) Ransomware95.46.99.21:443
2015-08-12 14:49:30a86145e0b716c86059ea4e8fc1b7cb51Virustotal results 2/56 (3.57%) Ransomware50.7.202.202:443
2015-08-09 01:20:07d404a31f7d718898de7c4b646112add3Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-08-08 10:04:47ab144883399a21e6be24a6f1805a16a0Virustotal results 31/55 (56.36%) Ransomware91.218.231.69:443
2015-08-07 15:36:31319319b9eba43c6b9d3cab08cba8df82Virustotal results 28/55 (50.91%) Ransomware91.218.231.69:443
2015-08-06 19:43:114a2eac89518c90bc8c4312381b55be79Virustotal results 5/55 (9.09%) Ransomware91.218.231.69:443
2015-08-06 10:17:3876a7a002fec7651191c53de3b1850eb4Virustotal results 3/56 (5.36%) Ransomware91.221.36.218:443
2015-08-06 08:02:24bab6d63261900737c2c2933cb0eac338Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-08-06 07:36:22b4fa7113b238843894042249eed7680bVirustotal results 3/55 (5.45%) Ransomware91.218.231.69:443
2015-08-03 21:28:299109848b31c235ad6419016119acb5f0Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-08-01 11:01:23617fd7113204814c8f224721f4831befVirustotal results 13/53 (24.53%) Ransomware146.185.243.3:443
2015-08-01 08:02:127919396af3ab477cafb9207360ca9986Virustotal results 18/56 (32.14%) Ransomware88.198.25.92:443
2015-07-31 08:31:095dba3fdcebb683eeba1318aeb745a2f6Virustotal results 5/55 (9.09%) Ransomware91.218.231.69:443
2015-07-31 08:31:095dba3fdcebb683eeba1318aeb745a2f6Virustotal results 5/55 (9.09%) Ransomware146.185.243.3:443
2015-07-26 18:16:104125ede0a05f4860d8902c96152b0762Virustotal results 32/56 (57.14%) Ransomware78.46.160.71:443
2015-07-26 09:58:122de9c745e4a6d6124d22c42c959b7501Virustotal results 4/55 (7.27%) Ransomware144.76.232.59:443
2015-07-26 09:29:47bcc74a74859f29c9bfedae54b5972a92Virustotal results 25/56 (44.64%) Ransomware78.46.160.71:443
2015-07-25 10:49:292799020b09bf9bb04053bef8ac7545b2Virustotal results 4/55 (7.27%) Ransomware144.76.232.59:443
2015-07-25 10:20:27262682070b7c191b33bc04b2c84d3e75Virustotal results 5/57 (8.77%) Ransomware144.76.232.59:443
2015-07-23 04:18:28823b8259bc1c321b24022d709d0e01f2Virustotal results 2/55 (3.64%) Ransomware93.171.158.199:443
2015-07-22 16:44:203163cd55b5ae32e0d3aa07912d417b3fVirustotal results 3/55 (5.45%) Ransomware5.178.82.105:443
2015-07-18 06:10:48daf9cc9bedfd6b669f814bf623edf01bVirustotal results 24/56 (42.86%) Ransomware86.105.18.114:443
2015-07-17 23:44:5361758b63948ba6017d4fa4b60ee62eaeVirustotal results 28/55 (50.91%) Ransomware5.178.82.105:443
2015-07-14 09:01:22b71b4149d0919ec5090b5de609b8b871Virustotal results 18/55 (32.73%) Ransomware151.80.10.66:443
2015-07-14 03:27:42e2187ab874c9993d63ec29ed2414bed1Virustotal results 5/55 (9.09%) Ransomware151.80.10.66:443
2015-07-11 22:46:561ae3a9333c92e8880efa7ae4e52f305fn/aRansomware78.47.143.212:443
2015-07-11 19:08:20e80ce3a7c264f72e5e37f8505e2da727Virustotal results 23/55 (41.82%) Ransomware5.196.249.187:443
2015-07-11 17:52:59f529819fc2201aadf6ee3eaf54858c53Virustotal results 17/56 (30.36%) Ransomware5.196.249.187:443
2015-07-11 17:03:309d63e7bddf49390bd129354a612b3a75Virustotal results 16/56 (28.57%) Ransomware78.47.143.212:443
2015-07-11 11:34:57186e51c84fcf445c640ae326ac7a21ecVirustotal results 5/55 (9.09%) Ransomware78.47.143.212:443
2015-07-08 14:41:59d68a03e2815850048a0f0edbd509136cVirustotal results 4/55 (7.27%) Ransomware185.39.149.98:443
2015-07-03 07:25:3382022295a012ee5771a22ef1cf28fb2aVirustotal results 8/56 (14.29%) Ransomware178.32.72.224:443
2015-07-02 09:38:13460201093e4171cb42d23247fac90964Virustotal results 1/55 (1.82%) Ransomware178.32.72.224:443
2015-07-01 21:11:0050b870a92ccd9829081f2c86fc220152Virustotal results 3/56 (5.36%) Ransomware178.32.72.224:443
2015-06-25 16:01:192e1f973a2fbc62f39418d3dc4afab0baVirustotal results 3/55 (5.45%) Ransomware185.86.76.80:443
2015-06-25 16:01:192e1f973a2fbc62f39418d3dc4afab0baVirustotal results 3/55 (5.45%) Ransomware185.42.15.152:443
2015-06-25 15:11:1707511b07cc53df4a0f781d7d5f1c41c1Virustotal results 4/56 (7.14%) Ransomware185.86.76.80:443
2015-06-19 13:09:5804df20b2f479b1410c94e96714b9cdbeVirustotal results 16/57 (28.07%) Ransomware185.86.76.80:443
2015-06-19 01:27:3995463e54b1b40bd78976a22979ea3e70Virustotal results 2/57 (3.51%) Ransomware185.86.76.80:443
2015-06-18 14:14:077a301c123f17e666277e4e201623cd3aVirustotal results 1/57 (1.75%) Ransomware185.86.76.80:443
2015-06-17 19:42:52e8765fea3188790275abae258291ecf4Virustotal results 4/57 (7.02%) Ransomware185.86.76.80:443
2015-06-15 13:20:182d35b0faab482c692f0c79b0b0a0550aVirustotal results 6/57 (10.53%) Ransomware78.47.28.178:443
2015-06-15 05:43:3571b55f6a8d4b5e0d2d5f302221426764Virustotal results 4/57 (7.02%) Ransomware78.47.28.178:443
2015-06-14 19:22:47803f00ca256e7808becd023c8f4effc5n/aRansomware78.47.28.178:443
2015-06-14 07:56:410d7c227d4616254f9ae4976270f2f398Virustotal results 12/57 (21.05%) Ransomware78.47.28.178:443
2015-06-13 21:32:111b4e97af9f327126146338b8cd21dd86Virustotal results 8/57 (14.04%) Ransomware78.47.28.178:443
2015-06-13 09:03:2260f45b8556bd29cfeeb42e94c828915cVirustotal results 12/57 (21.05%) Ransomware78.47.28.178:443
2015-06-13 04:10:59fbe14df58df8849edd974a46f87da135Virustotal results 31/56 (55.36%) Ransomware91.226.93.33:443
2015-06-12 17:49:03841e6f7989172256d278fb98e8643bebVirustotal results 6/57 (10.53%) Ransomware78.47.28.178:443
2015-06-10 16:50:04184fd041e12a9024031a8cd2d0884257Virustotal results 6/57 (10.53%) Ransomware217.174.105.27:443
2015-06-10 16:50:04184fd041e12a9024031a8cd2d0884257Virustotal results 6/57 (10.53%) Ransomware91.226.93.33:443
2015-05-30 22:27:1001582140fa553e8d5431218fc4a2e6c2Virustotal results 4/57 (7.02%) Ransomware80.242.123.144:443
2015-05-27 03:46:42da0bc6d4eddf0354245e6597947dadd7Virustotal results 45/57 (78.95%) Ransomware62.173.145.212:443
2015-05-16 14:28:1167c3aa6ae715e1e1450ec94e547ed8faVirustotal results 30/56 (53.57%) Ransomware146.120.110.147:443
2015-05-16 09:52:3261e9cbc95b52c21ff8a0ebd435cd2aa5Virustotal results 36/57 (63.16%) Ransomware185.91.175.94:443
2015-05-15 23:58:59e6782f6c699858006a8ed16a1803583aVirustotal results 26/56 (46.43%) Ransomware185.91.175.94:443
2015-05-15 11:49:078a1736e5df2dde3e20a9e3967052eeb7Virustotal results 19/57 (33.33%) Ransomware185.91.175.94:443
2015-05-14 20:14:283dc75b0331b7562fbf26a739d6e86a30Virustotal results 28/57 (49.12%) Ransomware185.91.175.94:443
2015-05-14 10:43:09ef113e53ac990e12d2b7ae0d87c4d7afVirustotal results 19/57 (33.33%) Ransomware146.120.110.147:443
2015-05-10 09:48:2377a5b0b371b9bea40c54ec822297120aVirustotal results 18/57 (31.58%) Ransomware185.42.15.147:443
2015-05-09 00:11:34710c06cda1fe271b3c779a03e4f2524cVirustotal results 31/57 (54.39%) Ransomware185.42.15.147:443
2015-05-07 09:40:2225af91b516c2c63ce89a710165128659Virustotal results 28/55 (50.91%) Ransomware185.38.84.59:443
2015-05-05 10:09:2817d9ab6ca5838d0a2fa80cdcfc928ff5Virustotal results 22/55 (40.00%) Ransomware62.173.145.212:443
2015-05-04 20:55:06ed4e38c11dfb8059aab480f610c2c9c5Virustotal results 4/55 (7.27%) Ransomware62.173.145.212:443
2015-05-03 18:55:2770afb0143f553fd40ddeb23ae2bc40d8Virustotal results 1/56 (1.79%) Ransomware62.173.145.212:443
2015-05-03 03:33:2261538446b83a79421f51c7c8bba98aa5Virustotal results 2/55 (3.64%) Ransomware62.173.145.212:443
2015-05-01 01:02:11bb28aba4b6359aa7fbe5fc4bcae1912bVirustotal results 18/53 (33.96%) Ransomware62.173.145.212:443
2015-04-30 12:33:17c9e937d76bc524ba3f1d4380e8517eb1Virustotal results 8/53 (15.09%) Ransomware62.173.145.212:443
2015-04-28 20:51:0521082bc12793316638e050c324b07230Virustotal results 35/55 (63.64%) Ransomware62.173.145.212:443
2015-04-27 17:07:29d70a2668153af717891ce3bb744debcfVirustotal results 10/56 (17.86%) Ransomware62.173.145.212:443
2015-04-27 06:57:3182ea7fa1b3840742a4522849938f6b83Virustotal results 29/57 (50.88%) Ransomware95.181.178.166:443
2015-04-25 10:52:059a4baafb374697e51991fbde8bc5c5acVirustotal results 1/57 (1.75%) Ransomware62.173.145.212:443
2015-04-20 15:49:2343d513af044d4eb59e5b37f159e04d1eVirustotal results 15/56 (26.79%) Ransomware62.173.145.212:443
2015-04-17 06:57:0604c4983c3396539c47fd6a2edb51df9dVirustotal results 2/55 (3.64%) Ransomware62.173.145.212:443
2015-04-11 11:48:10de4324dd63e0049161afd76c4ed36ba5Virustotal results 6/57 (10.53%) Ransomware62.173.145.212:443
2015-03-28 14:15:08444db1f0fae814d3552eabb7ac59f58fVirustotal results 32/57 (56.14%) Ransomware91.238.83.80:443
2015-03-24 15:12:15ca59e1d9b1d33ce3490269ce3766974dVirustotal results 2/57 (3.51%) Ransomware91.210.191.148:443
2015-03-13 19:03:52aaf64a5bd9446314cbd37b05bef5e84dVirustotal results 36/57 (63.16%) Ransomware185.86.76.94:443