Ransomware
Sekhmet
First seen: 2020-03 • Status: inactive
Currently Inactive
Sekhmet was part of the Maze ransomware family. When Maze shut down, Sekhmet disappeared too.
Overview
Sekhmet was linked to the Maze cartel and operated alongside Maze and Egregor. It shared code and infrastructure with both groups.
How It Spreads
- • RDP exploitation
- • Phishing
What It Does
- • File encryption
- • Data theft
Is your business exposed?
Target Platforms
Windows
Detection Tips
- • Historical threat
MITRE ATT&CK Techniques
T1486, T1567
If You're Infected
- 1.
Check for Maze family decryptors
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required