Suncrypt

Parsing : Enabled

Description

External Analysis
https://www.tetradefense.com/incident-response-services/cause-and-effect-suncrypt-ransomware-analysis
https://www.intezer.com/blog/malware-analysis/when-viruses-mutate-did-suncrypt-ransomware-evolve-from-qnapcrypt
https://analyst1.com/blog/ransom-mafia-analysis-of-the-worlds-first-ransomware-cartel
https://analyst1.com/file-assets/RANSOM-MAFIA-ANALYSIS-OF-THE-WORLD%E2%80%99S-FIRST-RANSOMWARE-CARTEL.pdf
https://blog.chainalysis.com/reports/ransomware-connections-maze-egregor-suncrypt-doppelpaymer
https://blog.minerva-labs.com/suncrypt-ransomware-gains-new-abilities-in-2022
https://cdn.pathfactory.com/assets/10555/contents/394789/0dd521f8-aa64-4517-834e-bc852e9ab95d.pdf
https://docs.google.com/spreadsheets/d/1MI8Z2tBhmqQ5X8Wf_ozv3dVjz5sJOs-3
https://go.crowdstrike.com/rs/281-OBQ-266/images/Report2021GTR.pdf
https://ke-la.com/to-attack-or-not-to-attack-targeting-the-healthcare-sector-in-the-underground-ecosystem/
https://medium.com/@sapphirex00/diving-into-the-sun-suncrypt-a-new-neighbour-in-the-ransomware-mafia-d89010c9df83
https://medium.com/s2wlab/case-analysis-of-suncrypt-ransomware-negotiation-and-bitcoin-transaction-43a2194ac0bc
https://medium.com/s2wlab/w4-july-en-story-of-the-week-ransomware-on-the-darkweb-c61965d0386a
https://pcsxcetrasupport3.wordpress.com/2021/03/28/suncrypt-powershell-obfuscation-shellcode-and-more-yara/
https://public.intel471.com/blog/ransomware-as-a-service-2020-ryuk-maze-revil-egregor-doppelpaymer/
https://www.accenture.com/us-en/blogs/cyber-defense/evolving-danger-ransomware-extortion
https://www.bleepingcomputer.com/news/security/suncrypt-ransomware-is-still-alive-and-kicking-in-2022/
https://www.bleepingcomputer.com/news/security/suncrypt-ransomware-sheds-light-on-the-maze-ransomware-cartel/
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-1st-2022-i-can-fight-with-a-keyboard/
https://www.coveware.com/blog/ransomware-attack-vectors-shift-as-new-software-vulnerability-exploits-abound
https://www.hornetsecurity.com/en/security-informationen-en/leakware-ransomware-hybrid-attacks/
https://www.intezer.com/blog/malware-analysis/when-viruses-mutate-did-suncrypt-ransomware-evolve-from-qnapcrypt
https://www.pwc.co.uk/issues/cyber-security-services/insights/what-is-behind-ransomware-attacks-increase.html
https://www.tesorion.nl/en/posts/shining-a-light-on-suncrypts-curious-file-encryption-mechanism/
https://www.trendmicro.com/en_us/research/22/g/gootkit-loaders-updated-tactics-and-fileless-delivery-of-cobalt-strike.html
Urls
Screen
http://x2miyuiwpib2imjr5ykyjngdu7v6vprkkhjltrk4qafymtawey4qzwid.onion/
Screen
http://nbzzb6sa6xuura2z.onion
File servers
Screen
Chat servers
Screen
Admin servers
Screen

Posts

Date Title Description Screen
2022-06-18
SOCOTEC
2022-06-04
Northeastern Technical College
2022-04-24
Co-opbank Pertama
2022-04-16
DJS associate
2022-04-14
Gemeente Buren
2022-04-14
Atlas Copco
2022-03-28
Oklahoma City Indian Clinic
2022-03-17
FitFlop Ltd.
2022-03-16
Migros
2022-02-22
Royal Smilde
2022-02-21
CENTRAL BAPTIST COLLEGE
2022-02-15
KVK Tech | Specialty Brands and Generics
2022-02-08
Heartland Alliance
2022-02-08
Community Health Center | Valle del Sol
2022-02-05
Consumers Supply Distributing LLC
2021-12-03
Bohlin Cywinski Jackson
2021-11-30
Read more
2021-11-19
Hospitality Furnishings & Design Inc.
2021-11-19
Herman & Kittle Properties Inc.
2021-11-05
Outdoor Venture Corporation (OVC)
2021-09-09
Tri-signal Intergration
2021-09-09
Glen Dimplex Home Appliances
2021-09-09
Grushwitz
2021-09-09
Mark A. O'neal and Associates
2021-09-09
AGSO
2021-09-09
Dean and Fulkerson
2021-09-09
SB Zantal Markt
2021-09-09
JSW Steel USA
2021-09-09
PRP diagnostic imaging
2021-09-09
Cornerstone Automation Systems, LLC