HOMETHREATSCIA Special Agent 767 Ransomware (FAKE!!!)
APT / THREAT GROUP

CIA Special Agent 767 Ransomware (FAKE!!!)

1
aliases

Intelligence Profile

It’s directed to English speaking users, therefore is able to infect users all over the world. It is spread using email spam, fake updates, attachments and so on. It SUPPOSEDLY encrypts all your files, including: music, MS Office, Open Office, pictures, videos, shared online files etc… Your files are not really encrypted and nothing actually happens, however the hacker does ask the victim to pay a sum of 100$, after 5 days the sum goes up to 250$ and thereafter to 500$. After the payment is received, the victim gets the following message informing him that he has been fooled and he simply needed to delete the note. https://4.bp.blogspot.com/-T8iSbbGOz84/WFGZEbuRfCI/AAAAAAAACm0/SO8Srwx2UIM3FPZcZl7W76oSDCsnq2vfgCPcB/s1600/code2.jpg

Threat Analysis

CIA Special Agent 767 Ransomware (FAKE!!!) is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases1

Also Known As

CIA Special Agent 767 Ransomware (FAKE!!!)

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.
CIA Special Agent 767 Ransomware (FAKE!!!) — APT / Threat Group | Threat Intelligence | CTIWATCH.COM