🇬🇧 The Egregor Ransomware
🇬🇧 The Egregor Ransomware
محتويات التنبيه:
معلومات :
| المرجع | CERTFR-2021-CTI-007 |
| العنوان | 🇬🇧 The Egregor Ransomware |
| تاريخ الاصدار الأول | 02 mars 2021 |
| تاريخ أخر تحديث | 03 mars 2021 |
| المصادر | |
| المرفقات | Aucune(s) |
المخاطر:
الأنظمة المثأثرة:
ملخص الثغرة:
Active since September 2020, the Egregor ransomware is currently being used in Big Game Hunting operations. Part of the Sekhmet malware family, Egregor is sometimes considered the successor to Maze. It is made available to various affiliates, explaining the different chains of infection reported. Trojans such as Qakbot, Ursnif and IcedID, can be used to deliver Egregor.
الحلول من هده الثغرة:
This report provides a synthesis of ANSSI’s knowledge on this malware.
المصادر: