General

  • Target

    DogeCrypt.exe

  • Size

    336KB

  • Sample

    200917-q7ej2te3gs

  • MD5

    016dd707baf9509b8a83234dded5712c

  • SHA1

    310f48e03fc9d6d098eff496a9b4de0ff29c9c39

  • SHA256

    bbc71c57a9b781e7c2a6472e86f25fb088c916879cebfcc4d08bef9e7e04555a

  • SHA512

    afe9548b59cfe2d879aad107a238da85ab1dd514b9c92dc6ff51dd0654dfa08890645104591d0bab280ba3d6efc50e608cc0d57bd7c56dae0d2af745eaa907e4

Score
10/10

Malware Config

Extracted

Path

C:\Users\Public\Desktop\note.txt

Family

dogecrypt

Ransom Note
WARNING! Your files were encrypted by DogeCrypt. The files are not damaged or destroyed! They're only modified If you want to reverse the modification conatact us: dogeremembersss@protonmail.ch or omnisystems@airmail.cc
Emails

dogeremembersss@protonmail.ch

omnisystems@airmail.cc

Targets

    • Target

      DogeCrypt.exe

    • Size

      336KB

    • MD5

      016dd707baf9509b8a83234dded5712c

    • SHA1

      310f48e03fc9d6d098eff496a9b4de0ff29c9c39

    • SHA256

      bbc71c57a9b781e7c2a6472e86f25fb088c916879cebfcc4d08bef9e7e04555a

    • SHA512

      afe9548b59cfe2d879aad107a238da85ab1dd514b9c92dc6ff51dd0654dfa08890645104591d0bab280ba3d6efc50e608cc0d57bd7c56dae0d2af745eaa907e4

    Score
    10/10
    • DogeCrypt Ransomware

      Family first seen in September 2020, based on the older desuCrypt/InsaneCrypt.

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

    • Sets desktop wallpaper using registry

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Impact

Defacement

1
T1491

Tasks