Ransomware - MedusaLocker

MedusaLocker
Decryptor Available
No
Description

This entry is under construction. However, we have included some details below.

Ransomware Type
Crypto-Ransomware
RaaS
Country of Origin
Russia
First Seen
Threat Actors
Type
Actor
Cybergroup
Anthropoid Spider
APT
Wizard Spider
Extortion Types
Direct Extortion
Double Extortion
Elicit Cyber Insurance
Free Data Leaks
Pseudo-Extortion
Victim Employee Communication
Website Defacing
Amount
$5,000
$10,000
$15,000
$20,000
$35,000
$40,000
$45,000
$50,000
$55,000
$60,000
$65,000
$70,000
$75,000
$80,000
$120,000
$155,000
$160,000
Moyen
Identifiant
Email
Tox
Encryption
Type
Hybrid
Files
AES-256
Key
RSA-2048
Blockchain Type
Crypto Wallet
BTC
12xd6KrWVtgHEJHKPEfXwMVWuFK4k1FCUF
BTC
14cATAzXwD7CQf35n8Ea5pKJPfhM6jEHak
BTC
14oH2h12LvQ7BYBufcrY5vfKoCq2hTPoev
BTC
14oxnsSc1LZ5M2cPZeQ9rFnXqEvPCnZikc
BTC
184ZcAoxkvimvVZaj8jZFujC7EwR3BKWvf
BTC
18wRbb94CjyTGkUp32ZM7krCYCB9MXUq42
BTC
1AbRxRfP6yHePpi7jmDZkS4Mfpm1ZiatH5
BTC
1AereQUh8yjNPs9Wzeg1Le47dsqC8NNaNM
BTC
1BkmiGWPLum8MzusqZsq6Tn7v4oUjqPLjC
BTC
1DeNHM2eTqHp5AszTsUiS4WDHWkGc5UxHf
BTC
1DRxUFhvJjGUdojCzMWSLmwx7Qxn79XbJq
BTC
1DyMbw6R9PbJqfUSDcK5729xQ57yJrE8BC
BTC
1Edcufenw1BB4ni9UadJpQh9LVx9JGtKpP
BTC
1HEDP3c3zPwiqUaYuWZ8gBFdAQQSa6sMGw
BTC
1HdgQM9bjX7u7vWJnfErY4MWGBQJi5mVWV
BTC
1HZHhdJ6VdwBLCFhdu7kDVZN9pb3BWeUED
BTC
1PopeZ4LNLanisswLndAJB1QntTF8hpLsD
BTC
1PormUgPR72yv2FRKSVY27U4ekWMKobWjg
BTC
1nycdn9ebxht4tpspu4ehpjz9ghxlzipll
BTC
bc1q9jg45a039tn83jk2vhdpranty2y8tnpnrk9k5q
BTC
bc1qy34v0zv6wu0cugea5xjlxagsfwgunwkzc0xcjj
BTC
bc1qz3lmcw4k58n79wpzm550r5pkzxc2h8rwmmu6xm
<file name>.1btc
<file name>.AKO
<file name>.EG
<file name>.EMPg296LCK
<file name>.FartingGiraffeAttacks
<file name>.FilesEncrypted
<file name>.NET1
<file name>.NZ
<file name>.ReadInstructions
<file name>.ReadTheInstructions
<file name>.Readinstruction
<file name>.VinDizelPux
<file name>.abstergo
<file name>.bec
<file name>.bomber
<file name>.boroff
<file name>.breakingbad
<file name>.cn
<file name>.datalock
<file name>.deadfiles
<file name>.deadfilesgr
<file name>.deadnet26
<file name>.decrypme
<file name>.encrypted
<file name>.faratak
<file name>.fileslock
<file name>.fileslocked
<file name>.himynameisransom
<file name>.itlock20
<file name>.jpz.nz
<file name>.key1
<file name>.lock
<file name>.lockdata7
<file name>.locker16
<file name>.lockfiles
<file name>.lockfilesCO
<file name>.lockfilesKR
<file name>.lockfilesUS
<file name>.lr
<file name>.marlock01
<file name>.marlock02
<file name>.marlock6
<file name>.marlock08
<file name>.marlock011
<file name>.marlock11
<file name>.marlock13
<file name>.marlock25
<file name>.matlock20
<file name>.mylock
<file name>.networkmaze
<file name>.newlock
<file name>.newware
<file name>.nexe
<file name>.nlocker
<file name>.nt_lock20
<file name>.perfection
<file name>.readtheinstructions
<file name>.rs
<file name>.skynet
<file name>.stopflies
<file name>.support
<file name>.tyco
<file name>.READINSTRUCTIONS
<file name>.uslockhh
<file name>.zoomzoom
! _HOW_RECOVERY_FILES _!. HTML
!!!HOW_TO_DECRYPT!!!
HOW_TO_BACK_FILES.html
HOW_TO_OPEN_FILES.html
HOW_TO_RECOVER_DATA.html
How_to_recovery.txt
READINSTRUCTION.html
Recovery_Instructions.html
how_to_ recover_data.html
how_to_recover_data.html.marlock01
instructions.html
readinstructions.html
readme_to_recover_files
recovery_instruction.html
recovery_instructions.html
Samples (SHA-256)
6c77cb165c448b2749b7e2afa9ac67640a9d8e0d96cc821c08adcea07759090b
af768da08a34ddf503522186a22e65e623491e48754356210cc6798598f85266
Industry Sector Pays Extortion Date Amount (USD)
Media & MarketingAustralia
HospitalityUnited Arab Emirates
Construction & ArchitectureUnited States $15,000
Aerospace & AviationCanada $50,000
ManufacturingItaly $10,000
HospitalitySlovakia $35,000
Banking & FinancePhilippines $70,000
Professional ServicesGermany $35,000
LegalUnited States $55,000
Information TechnologyUnited States $5,000
Professional ServicesUnited States $55,000
Professional ServicesUnited States $35,000
LegalUnited Kingdom $75,000
Professional ServicesUnited States $45,000
HospitalityUnited States $65,000
EducationNetherlands $55,000
InsuranceUnited Arab Emirates $155,000
Distribution & LogisticsUnited States $160,000
ManufacturingUnited Kingdom $160,000
LegalUnited States $160,000
Information TechnologyIreland $120,000
ManufacturingUnited States
Professional ServicesUnited States $80,000
Construction & ArchitectureUnited States $80,000
EducationFrance $40,000
Healthcare & MedicineUnited States $60,000
Aerospace & AviationUnited States $160,000
Distribution & LogisticsHungary $50,000
Fashion & TextilesSwitzerland $20,000
Professional ServicesGermany $80,000
ElectronicsBelgium $80,000
Construction & ArchitectureUnited States $35,000
Construction & ArchitectureCanada $35,000
Real Estate & HousingUnited States $55,000
EducationUnited States $35,000
ChemicalNetherlands $35,000
BleepingComputer Forums: Far Attack/IThelp02 Ransomware
Dashboard Ransomware Monitor: MedusaLocker
f0wL&#039;s Dissecting Malwa.re: Try not to stare - MedusaLocker at a glance
Hatching Triage: MedusaLocker
MalwareBazaar: MedusaLocker
PCrisk: AKO
PCrisk: Itlock
PCrisk: MedusaLocker
The Crypto-Ransomware Digest: MedusaLocker
U.S. Department of Health and Human Services: MedusaLocker Ransomware
vx-underground: MedusaLocker Samples