← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
BlueSky Ransomware: Fast Encryption via Multithreading
WHITE CyberHunter_NL 2022-08-11 Modified: 2022-08-11
61
IOCs
HIGH VOLUME
BlueSky ransomware is an emerging family of malware that targets Windows hosts and demands a ransom for the decryption of data, according to research conducted by Palo Alto Networks and carried out a security analysis.
blueskycontifigureunitdecrypt fileshkcusoftwarecurve25519recovery blobransomwarewindowsconti v3wildfirejuicypotatodropperpowershellredlinedownloadercode
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
BlueSky Conti
Indicators of Compromise (12 / 61 total)
All URL domain CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 01d66a03a0de2ee2eacacaa3ac98f0aa MD5 of 2280898cb29faf1785e782596d8029cb471537ec38352e5c17cc263f1f52b8ef 2022-08-11
FileHash-MD5 1c6733540b02c1681b21884dd67ce52f MD5 of c4e47cba1c5fedf9ba522bc2d2de54a482e0ac29c98358390af6dadc0a7d65ce 2022-08-11
FileHash-MD5 4032a356d0bb5dd476209a641a5e0275 MD5 of 6c94a1bc67af21cedb0bffac03019dbf870649a182e58cc5960969adf4fbdd48 2022-08-11
FileHash-MD5 5ef5cf7dd67af3650824cbc49ffa9999 MD5 of e75717be1633b5e3602827dc3b5788ff691dd325b0eddd2d0d9ddcee29de364f 2022-08-11
FileHash-MD5 848974fba78de7f3f3a0bbec7dd502d4 MD5 of 840af927adbfdeb7070e1cf73ed195cf48c8d5f35b6de12f58b73898d7056d3d 2022-08-11
FileHash-MD5 b41896123586665144ccbba47660791d MD5 of 624f129189a05897c176e9feb519521c1b6ef528b0b52e1a7a3290e5a2313a6b MD5 of 624f129189a05897c176e9feb519521c1b6ef528b0b52e1a7a3290e5a2313a6b 2022-08-11
FileHash-MD5 b48dea0c642487df2482ab8fa55bb923 MD5 of 0dfe7a93ff40834c072c7fdd9381771b1086b67f545fa83c766b2d67a911e47b 2022-08-11
FileHash-MD5 bf88467ccf7ebf8434fa074016bf7436 MD5 of cf64c08d97e6dfa5588c5fa016c25c4131ccc61b8deada7f9c8b2a41d8f5a32c 2022-08-11
FileHash-MD5 d38aea02881ff45b60e6b2c11cd44916 MD5 of aa7ff8badcffdff66df6d30bde51b6e3c960be0a3719b73d3875af8e1173bd94 2022-08-11
FileHash-MD5 d78ed5e9762a7ec07b49fa0f75f95199 MD5 of fe2e5df2fae90fb90b56e4ea268e8ca68f46dc3365c22b840d865193a48be189 2022-08-11
FileHash-MD5 d8a44d2ed34b5fee7c8e24d998f805d9 MD5 of 3e035f2d7d30869ce53171ef5a0f761bfb9c14d94d9fe6da385e20b8d96dc2fb 2022-08-11
FileHash-MD5 efec04688a493077cea9786243c25656 MD5 of c75748dc544629a8a5d08c0d8ba7fda3508a3efdaed905ad800ffddbc8d3b8df 2022-08-11
References (1)
↗ https://unit42.paloaltonetworks.com/bluesky-ransomware/