APT / THREAT GROUP
HSHARADA
1
aliases
Intelligence Profile
The ransomware was identified in early April 2023 and is said to target English-speaking users and potentially other languages.
The extension added to encrypted files is: ".m9SRob" (potentially random).
The ransom note is named "m9SRob-README.txt".
There are no further details about the mentioned group or potentially files.
The fact is that it adds an ID for each victim.
Threat Analysis
HSHARADA is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
HSHARADA
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.