Difference between revisions of "Urausy"

From Botnets.fr
Jump to navigation Jump to search
m (1 revision imported)
m (Text replacement - "=Unknown" to "=")
 
Line 52: Line 52:
|UserAgent2=Opera/9.80 (Windows NT 5.1; U; Edition Yx; ru) Presto/2.9.168 Version/11.52 01/12/12
|UserAgent2=Opera/9.80 (Windows NT 5.1; U; Edition Yx; ru) Presto/2.9.168 Version/11.52 01/12/12
|UserAgent3=Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.11 (KHTML, like Gecko) Chrome/23.0.1271.97 Safari/537.11 31/01/13
|UserAgent3=Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.11 (KHTML, like Gecko) Chrome/23.0.1271.97 Safari/537.11 31/01/13
|CCProtocol=Unknown
|CCProtocol=
|Target=Unknown
|Target=
|Status=Unknown
|Status=
|BeginYear=2012
|BeginYear=2012
|EndYear=Unknown
|EndYear=
|Group=Police lock
|Group=Police lock
|Groupe2=Family
|Groupe2=Family

Latest revision as of 15:49, 8 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

Urausy
Alias
Group Police lock
Parent
Sibling
Family
Relations Variants: Uremtoo

Sibling of:
Parent of:
Distribution of:
Campaigns:

Target
Origin
Distribution vector Sibhost
UserAgent Our_Agent
CCProtocol
Activity 2012 /
Status
Language
Programming language
Operation/Working group

Introduction

  • Will show the victim's antivirus logo in July 2013 versions

Features

Associated images

... further results

Checksums / AV databases

Publications

 AuthorEditorYear
CVE-2013-1493 (jre17u15 - jre16u41) integrating exploit kitsKafeineKafeine2013
Inside Styx exploit kit control panelKafeine
Urausy has big plan for Europe - Targeting 3 new countries among which Norway !Kafeine2012
Urausy improving its localization - A (the\?) Gaelic Ransomware with Interpol impersonation as default landingKafeineBlogspot2012
Urausy ransomware - July 2013 design refresh - "Summer 2013 collection"KafeineKafeine2013
Urausy: Colorfull design refresh (+HR) & EC3 LogoKafeineKafeine2013
Retrieved from "https://www.botnets.fr/index.php?title=Urausy&oldid=12428"