MALWARE: RansomEXX

RansomExx is a ransomware variant that debuted as Defray777 in 2018. It made a name for itself in 2020, after it was used in widely reported attacks on government agencies, manufacturers, and other such high-profile only months apart. By then, it was dubbed RansomEXX after the string “ransom.exx” was found in its binary. In 2020, the group also started a leak site for publishing stolen data.

 

Incidents Caused by this Malware

  • December 9, 2021: Ransomware Attack at German Supply Chain & Logistics Giant

Threat Actors Known to use this Malware

No threat actors identified

Pin It on Pinterest

Scroll to Top