MALWARE: RansomEXX
RansomExx is a ransomware variant that debuted as Defray777 in 2018. It made a name for itself in 2020, after it was used in widely reported attacks on government agencies, manufacturers, and other such high-profile only months apart. By then, it was dubbed RansomEXX after the string “ransom.exx” was found in its binary. In 2020, the group also started a leak site for publishing stolen data.
Incidents Caused by this Malware
- December 9, 2021: Ransomware Attack at German Supply Chain & Logistics Giant
Threat Actors Known to use this Malware
No threat actors identified