HOMETHREATSSerbRansom 2017 Ransomware
APT / THREAT GROUP

SerbRansom 2017 Ransomware

1
aliases

Intelligence Profile

It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encrypts all your files, including: music, MS Office, Open Office, pictures, videos, shared online files etc.. The ransom is 500$ in bitcoins. The name of the hacker is R4z0rx0r Serbian Hacker.

Threat Analysis

SerbRansom 2017 Ransomware is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases1

Also Known As

SerbRansom 2017 Ransomware

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.
SerbRansom 2017 Ransomware — APT / Threat Group | Threat Intelligence | CTIWATCH.COM