IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

トップ > Ransomware: Ranion > Ranion (2021/10/13)

Ranion (2021/10/13)

Ransomware: Ranion

【インディケータ情報】

■ハッシュ情報(Sha256) - Ranion -
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(以上は Fortinet の情報: 引用元は https://www.fortinet.com/jp/blog/threat-research/ranion-ransomware-quiet-and-persistent-raas )


【検索】

google: 52f6e8c0c28f802d8dfd9138bcc971d449d0526469a36541359b6fc31d44d7dc
google: d63f032180d6cbc3165f79dac13f81e69f3176b06f0ff4b162b167e4f45f5e93
google: f687c51ee4889c6a35536d06c87b0123d17a483f7e2f5efcfb423fba94e186be
google: f18044a85ceb3c472ae57e3473e2f14f945f22a9df634caa242b11e5f81c561b
google: e4c42969a0327ce133b8b6dd52b0f2e926fbc43a48cf2abbd78d521e310b00e4
google: 41ad23008aea13bccf60249c24ee290e9867223d783bc9ddc4234b8e1d21008d
google: d894cfa1f2e55ea8fb61598d1312d92c6c1667f97ec683dfa5b5350b32402099
google: 2a8f7abaa6b896bdcc8f73a78af89274df5ee5f586edb88a0b4fd0b06cbaf6bd
google: 19b2da9261d163d3a8e25916b0c960bae36d4334172faa2eb7f720c7483f0fb1
google: 434bbb0e4f289944e6c1fafc11e7f3353056857fb90abafd17e2c6ec697d94b3
google: bbe77c293bf11c5e8d26ff1583cf546a346de5d666e5558b17f056f1117ddaf8
google: 7afbb979ac6485cbe4d21955dd0f4444d67d2b99aa3d420c09bcc7d54949ed7c
google: ac5e6f8e646311bf3645ccdccf7119712ada6811d973444d3a763d17083ef028
google: 2ab7ba4aa579ffda113b3f1a693cb2f6b45c5adb833301762d623089f5e37694
google: 4ad4aabd3ec941e6eb442aadae23e01539f63c093582ebf9239681fe399c7571
google: e28afea1a286b27c9f4578cb27729e180dd20f406282e489328e11722b37af73
google: 8a4298a5c2101baf0315a2c5ed297a6b9912c673a200a7082fb96fcaa21a7316
google: 798a618bf3b817751de722bc84475d5dca798fb48e844804d530e34e920fad09
google: bd82bb30089383547fcc1ab8181c957f770a99c1499db211fa3245135fcce2be
google: eba37b0cef846c16bca30804557d7dae57b16cda506a111e2e4c6f7ef54cab70
google: 507cc65037febbad93cd5a4c10d1e870f4f73069484bd7913349deb139c18ea2
google: b93a45691e955d4600dde6219125f0a38b0544ad48872bc4ebda5436cf2c0bc0
google: abf13688180d505d07b04a6643941a571de1efd97b46631abfafd555863ec33e
google: 0f2bbf749501297928efbd4a12d8a1858c7944516e8b15817988a429eae4e632
google: a9671f6455895b1e0875eec277015672ea816dc5299cfd519db2dc4bc38ce693
google: 0a59c6b2ec5dbaa7e36b52dc494d1e58e918f32695cfb28104a5c82b09a9554f
google: ca7aaa3de1948dc882d55d40a0269a145e34f1e07b2b1e932040863e6d1dedb8
google: 27cb1df4a3092c42ddfd93db50cc78813a823a881e6d131410915d0ded6515c4
google: 46b9c46520f00b25924cc0a137393f67a0f4395da8cdc37b32985b90d7285252
google: 46462ba2ac8018901239800f1c4562a31618b1565fe559ab826feef303adab8d
google: df7c5267c9e61d7b23a3a771623c6b274fb601023725a8af1b8bc25ae8bcbdb6
google: 0085d31140895d16a2f92a77b62fb50db0d05fa47b447e21bca062532b5bf0d2
google: 780a576b7ea69b46eb8a698aac0c6ee6e2e426fddcd7a99b749f5aa083e8f72b
google: 94968c73dacfd68500ca59905e410ca4ccafe92cd8e223ed47ad916ee82a6dfb
google: c18c9cf30056d9ebfda69bb9869a38b5ab2d2e3d388a747d7ec8516e022aa7e9
google: 19d9ec2713d913d5325a72ce646351a2384d86efd5dcecebb354ef2bc9e801a2
google: c38e068677903ccd9b117bacaa3b201616668e449856f8d14894f9acf3f6e9cc
google: 378b34a3e1f760dc7d6c5ff742c543a0184a255c7c3422e348eab05dca1377f9
google: e9352eb25a1ef3fc8d88fd62a4253d4b8db3931366f012e9ee7916818f74ad55
google: f7b6ac95cbf4f4122c67e3f841de1152cb032e36d768cd71618cbaf95f131727
google: df16d6b57a0290b8d7276285020cf6cf5e7c4a561516500fd44e862ea32c1073
google: dbd00dffb77998d4b0c9946e727279831f19e5d58059b0de353cb191f6c3ca00
google: 1bbc33db0c52d5c3f2798f726bb476cf20d00eeae971e98926bbfbf194e7e03c
google: 98f16b75d1c9e3c8914b10de4b6286397285d226785b42766847b35558ee0dc7
google: 86c6a8c1cd461dafdc30ce37eca355f096ff35ccd48b4de3f2f3bd56d0cef543
google: c5234f098cf2319c813e8025e0ea04b4f45de4ad195b64ba80fe9a098de54431
google: 0361585476c9e04cbe9efac74fe76e32d84e2e682ac4a8e5f67860a719e7b6d0
google: 1fdaae6a5b1d69d795a07b5518568964dc53e181b22ad2427e7f10c60d61241b
google: 4824c68f18089c44af8426b9a2d7960f5caa572777a46b3a172093b321acbf1d
google: eed03a9564aee24a68b2cade89d7fbe9929e95751a9fde4539c7896fda6bdcb5
google: 023b12665ff5c46331ece74d220c52a28439ada61210183bbd921e1ef833645c
google: aa9bbffae11e2a2af53acbb56129d99cb93c78c98202f5c19b095f9ed296a2ce
google: ea00fffa874669e743d125fcdb55ba591a54d469c621eada61f304495269a35c
google: f389a83b1309ff17c9c0faf1d9e079ceae3b4111c6813ad50bd451a9a19b291b
google: 33d24a576f00847d44315c1d6d588a3aa45031dec2b1590bc67bc6800e455cf6


【VT検索】

https://www.virustotal.com/gui/file/52f6e8c0c28f802d8dfd9138bcc971d449d0526469a36541359b6fc31d44d7dc
https://www.virustotal.com/gui/file/d63f032180d6cbc3165f79dac13f81e69f3176b06f0ff4b162b167e4f45f5e93
https://www.virustotal.com/gui/file/f687c51ee4889c6a35536d06c87b0123d17a483f7e2f5efcfb423fba94e186be
https://www.virustotal.com/gui/file/f18044a85ceb3c472ae57e3473e2f14f945f22a9df634caa242b11e5f81c561b
https://www.virustotal.com/gui/file/e4c42969a0327ce133b8b6dd52b0f2e926fbc43a48cf2abbd78d521e310b00e4
https://www.virustotal.com/gui/file/41ad23008aea13bccf60249c24ee290e9867223d783bc9ddc4234b8e1d21008d
https://www.virustotal.com/gui/file/d894cfa1f2e55ea8fb61598d1312d92c6c1667f97ec683dfa5b5350b32402099
https://www.virustotal.com/gui/file/2a8f7abaa6b896bdcc8f73a78af89274df5ee5f586edb88a0b4fd0b06cbaf6bd
https://www.virustotal.com/gui/file/19b2da9261d163d3a8e25916b0c960bae36d4334172faa2eb7f720c7483f0fb1
https://www.virustotal.com/gui/file/434bbb0e4f289944e6c1fafc11e7f3353056857fb90abafd17e2c6ec697d94b3
https://www.virustotal.com/gui/file/bbe77c293bf11c5e8d26ff1583cf546a346de5d666e5558b17f056f1117ddaf8
https://www.virustotal.com/gui/file/7afbb979ac6485cbe4d21955dd0f4444d67d2b99aa3d420c09bcc7d54949ed7c
https://www.virustotal.com/gui/file/ac5e6f8e646311bf3645ccdccf7119712ada6811d973444d3a763d17083ef028
https://www.virustotal.com/gui/file/2ab7ba4aa579ffda113b3f1a693cb2f6b45c5adb833301762d623089f5e37694
https://www.virustotal.com/gui/file/4ad4aabd3ec941e6eb442aadae23e01539f63c093582ebf9239681fe399c7571
https://www.virustotal.com/gui/file/e28afea1a286b27c9f4578cb27729e180dd20f406282e489328e11722b37af73
https://www.virustotal.com/gui/file/8a4298a5c2101baf0315a2c5ed297a6b9912c673a200a7082fb96fcaa21a7316
https://www.virustotal.com/gui/file/798a618bf3b817751de722bc84475d5dca798fb48e844804d530e34e920fad09
https://www.virustotal.com/gui/file/bd82bb30089383547fcc1ab8181c957f770a99c1499db211fa3245135fcce2be
https://www.virustotal.com/gui/file/eba37b0cef846c16bca30804557d7dae57b16cda506a111e2e4c6f7ef54cab70
https://www.virustotal.com/gui/file/507cc65037febbad93cd5a4c10d1e870f4f73069484bd7913349deb139c18ea2
https://www.virustotal.com/gui/file/b93a45691e955d4600dde6219125f0a38b0544ad48872bc4ebda5436cf2c0bc0
https://www.virustotal.com/gui/file/abf13688180d505d07b04a6643941a571de1efd97b46631abfafd555863ec33e
https://www.virustotal.com/gui/file/0f2bbf749501297928efbd4a12d8a1858c7944516e8b15817988a429eae4e632
https://www.virustotal.com/gui/file/a9671f6455895b1e0875eec277015672ea816dc5299cfd519db2dc4bc38ce693
https://www.virustotal.com/gui/file/0a59c6b2ec5dbaa7e36b52dc494d1e58e918f32695cfb28104a5c82b09a9554f
https://www.virustotal.com/gui/file/ca7aaa3de1948dc882d55d40a0269a145e34f1e07b2b1e932040863e6d1dedb8
https://www.virustotal.com/gui/file/27cb1df4a3092c42ddfd93db50cc78813a823a881e6d131410915d0ded6515c4
https://www.virustotal.com/gui/file/46b9c46520f00b25924cc0a137393f67a0f4395da8cdc37b32985b90d7285252
https://www.virustotal.com/gui/file/46462ba2ac8018901239800f1c4562a31618b1565fe559ab826feef303adab8d
https://www.virustotal.com/gui/file/df7c5267c9e61d7b23a3a771623c6b274fb601023725a8af1b8bc25ae8bcbdb6
https://www.virustotal.com/gui/file/0085d31140895d16a2f92a77b62fb50db0d05fa47b447e21bca062532b5bf0d2
https://www.virustotal.com/gui/file/780a576b7ea69b46eb8a698aac0c6ee6e2e426fddcd7a99b749f5aa083e8f72b
https://www.virustotal.com/gui/file/94968c73dacfd68500ca59905e410ca4ccafe92cd8e223ed47ad916ee82a6dfb
https://www.virustotal.com/gui/file/c18c9cf30056d9ebfda69bb9869a38b5ab2d2e3d388a747d7ec8516e022aa7e9
https://www.virustotal.com/gui/file/19d9ec2713d913d5325a72ce646351a2384d86efd5dcecebb354ef2bc9e801a2
https://www.virustotal.com/gui/file/c38e068677903ccd9b117bacaa3b201616668e449856f8d14894f9acf3f6e9cc
https://www.virustotal.com/gui/file/378b34a3e1f760dc7d6c5ff742c543a0184a255c7c3422e348eab05dca1377f9
https://www.virustotal.com/gui/file/e9352eb25a1ef3fc8d88fd62a4253d4b8db3931366f012e9ee7916818f74ad55
https://www.virustotal.com/gui/file/f7b6ac95cbf4f4122c67e3f841de1152cb032e36d768cd71618cbaf95f131727
https://www.virustotal.com/gui/file/df16d6b57a0290b8d7276285020cf6cf5e7c4a561516500fd44e862ea32c1073
https://www.virustotal.com/gui/file/dbd00dffb77998d4b0c9946e727279831f19e5d58059b0de353cb191f6c3ca00
https://www.virustotal.com/gui/file/1bbc33db0c52d5c3f2798f726bb476cf20d00eeae971e98926bbfbf194e7e03c
https://www.virustotal.com/gui/file/98f16b75d1c9e3c8914b10de4b6286397285d226785b42766847b35558ee0dc7
https://www.virustotal.com/gui/file/86c6a8c1cd461dafdc30ce37eca355f096ff35ccd48b4de3f2f3bd56d0cef543
https://www.virustotal.com/gui/file/c5234f098cf2319c813e8025e0ea04b4f45de4ad195b64ba80fe9a098de54431
https://www.virustotal.com/gui/file/0361585476c9e04cbe9efac74fe76e32d84e2e682ac4a8e5f67860a719e7b6d0
https://www.virustotal.com/gui/file/1fdaae6a5b1d69d795a07b5518568964dc53e181b22ad2427e7f10c60d61241b
https://www.virustotal.com/gui/file/4824c68f18089c44af8426b9a2d7960f5caa572777a46b3a172093b321acbf1d
https://www.virustotal.com/gui/file/eed03a9564aee24a68b2cade89d7fbe9929e95751a9fde4539c7896fda6bdcb5
https://www.virustotal.com/gui/file/023b12665ff5c46331ece74d220c52a28439ada61210183bbd921e1ef833645c
https://www.virustotal.com/gui/file/aa9bbffae11e2a2af53acbb56129d99cb93c78c98202f5c19b095f9ed296a2ce
https://www.virustotal.com/gui/file/ea00fffa874669e743d125fcdb55ba591a54d469c621eada61f304495269a35c
https://www.virustotal.com/gui/file/f389a83b1309ff17c9c0faf1d9e079ceae3b4111c6813ad50bd451a9a19b291b
https://www.virustotal.com/gui/file/33d24a576f00847d44315c1d6d588a3aa45031dec2b1590bc67bc6800e455cf6




【ブログ】

◆Ranionランサムウェア:長期間存在し、目立たないRaaS (Fortinet, 2021/10/13)
https://www.fortinet.com/jp/blog/threat-research/ranion-ransomware-quiet-and-persistent-raas
https://malware-log.hatenablog.com/entry/2021/10/13/000000_9