Flocker Inactive

Mobile ransomware targeting Android devices and smart TVs.
PDF Report Back to Groups
0
Total Victims
2016-04-01
First Seen
N/A
Last Seen
0
Known TTPs
22.6d
Avg Delay
0
Negotiations
ONION URLS
flock4cvoeqm4c62gyohvmncx6ck2e7ugvyqgyxqtrumklhd5ptwzpqd.onion
TOOLS
ADFind TDSSKiller BazarLoader
FILE EXTENSIONS
.pay
ACTIVITY TIMELINE
TOP SECTORS
TOP COUNTRIES
ACTIVITY HEATMAP
Date Victim Name Country Sector Status
No victims recorded

No TTPs data

No YARA rules

TypeValueDescriptionCopy
email payment284@keemail.me Associated with Flocker ransomware
email admin336@keemail.me Contact email observed in Flocker attacks
sha256 b15ee26d8c725f2efb2859c67202a8d11e620904b226b6e0834cd624af888e7f Infrastructure linked to Flocker
md5 26679a7d9a7f4c28924d25e751707f2b Infrastructure linked to Flocker
email contact64@airmail.cc Contact email observed in Flocker attacks
ip 1.168.8.25 C2 server IP - Flocker campaign
sha256 108868d08247432268ff94c1bf2b7c08a45f6f8d256c55e4687ef9ee20aa3211 Ransomware binary hash - Flocker campaign
md5 c55251efb14e08d219376451525d1656 Malware sample hash observed in Flocker attacks

No ransom notes