mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-30 02:37:17 +00:00
add MedusaLocker ransomware
This commit is contained in:
parent
64f100e578
commit
590e292b68
1 changed files with 13 additions and 1 deletions
|
@ -18797,7 +18797,19 @@
|
||||||
},
|
},
|
||||||
"uuid": "721e9af0-8a60-4b9e-9137-c23e86d75722",
|
"uuid": "721e9af0-8a60-4b9e-9137-c23e86d75722",
|
||||||
"value": "Zyklon"
|
"value": "Zyklon"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "A Windows ransomware that will run certain tasks to prepare the target system for the encryption of files. MedusaLocker avoids executable files, probably to avoid rendering the targeted system unusable for paying the ransom. It uses a combination of AES and RSA-2048, and reportedly appends extensions such as .encrypted, .bomber, .boroff, .breakingbad, .locker16, .newlock, .nlocker, and .skynet.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://malpedia.caad.fkie.fraunhofer.de/details/win.medusalocker"
|
||||||
|
],
|
||||||
|
"synonyms": [],
|
||||||
|
"type": []
|
||||||
|
},
|
||||||
|
"uuid": "237a1c2e-fb14-583d-ab2c-71f10a52ec06",
|
||||||
|
"value": "MedusaLocker"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 2560
|
"version": 2561
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue