add Ragnar Locker and update accordingly

2024-11-22 14:57:18 +00:00 · 2021-02-23 16:21:07 +01:00 · 2021-02-23 16:21:07 +01:00 · eb07fab69f
commit eb07fab69f
parent 06ae10965b
2 changed files with 29 additions and 1 deletions
--- a/clusters/mitre-malware.json
+++ b/clusters/mitre-malware.json
@ -2564,6 +2564,13 @@
            "estimative-language:likelihood-probability=\"almost-certain\""
          ],
          "type": "uses"
+        },
+        {
+          "dest-uuid": "e69f9836-873a-43d3-92a8-97ab783a4171",
+          "tags": [
+            "estimative-language:likelihood-probability=\"likely\""
+          ],
+          "type": "similar"
        }
      ],
      "uuid": "54895630-efd2-4608-9c24-319de972a9eb",
--- a/clusters/ransomware.json
+++ b/clusters/ransomware.json
@ -14060,7 +14060,28 @@
      },
      "uuid": "39781a7a-cd3a-4e24-aeb8-94a767a2551b",
      "value": "Tycoon"
+    },
+    {
+      "description": "Ragnar Locker is a ransomware identified in December 2019 that targetscorporate networks inBig Game Huntingtargeted attacks. This reportpresents recent elements regarding this ransomware.",
+      "meta": {
+        "refs": [
+          "https://www.bleepingcomputer.com/news/security/ragnar-locker-ransomware-targets-msp-enterprise-support-tools/",
+          "https://news.sophos.com/en-us/2020/05/21/ragnar-locker-ransomware-deploys-virtual-machine-to-dodge-security/",
+          "https://www.cybersecurity-insiders.com/ransomware-attack-makes-cwt-pay-4-5-million-in-bitcoins-to-hackers/"
+        ]
+      },
+      "related": [
+        {
+          "dest-uuid": "54895630-efd2-4608-9c24-319de972a9eb",
+          "tags": [
+            "estimative-language:likelihood-probability=\"likely\""
+          ],
+          "type": "similar"
+        }
+      ],
+      "uuid": "e69f9836-873a-43d3-92a8-97ab783a4171",
+      "value": "Ragnar Locker"
    }
  ],
-  "version": 92
+  "version": 93
 }