Crylock

Description

External Analysis
https://bartblaze.blogspot.com/2016/02/vipasana-ransomware-new-ransom-on-block.html
https://blog.checkpoint.com/2015/11/04/offline-ransomware-encrypts-your-data-without-cc-communication/
https://hackmag.com/security/ransomware-russian-style/
https://ke-la.com/the-ideal-ransomware-victim-what-attackers-are-looking-for/
https://securelist.com/cis-ransomware/104452/
https://securelist.com/the-return-of-fantomas-or-how-we-deciphered-cryakl/86511/
https://securelist.ru/shifrovalshhik-cryakl-ili-fantomas-razbushevalsya/24070/
https://twitter.com/albertzsigovits/status/1217866089964679174
https://twitter.com/bartblaze/status/1305197264332369920
https://twitter.com/demonslay335/status/971164798376468481
https://www.elastic.co/blog/ten-process-injection-techniques-technical-survey-common-and-trending-process
https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Cryakl-B/detailed-analysis.aspx
https://www.telekom.com/en/blog/group/article/lockdata-auction-631300
Urls
Screen
http://d57uremugxjrafyg.onion
File servers
Screen