Ransomware
WastedLocker
First seen: 2020-05 • Status: inactive
Currently Inactive
WastedLocker is ransomware made by the Russian Evil Corp gang. They targeted major US companies with huge ransom demands.
Overview
WastedLocker is ransomware attributed to Evil Corp. It targeted large US companies with demands of $500K to $10M.
How It Spreads
- • SocGholish fake updates
- • Cobalt Strike deployment
What It Does
- • File encryption
- • High ransom demands
- • Targets large enterprises
Is your business exposed?
Target Platforms
Windows
Detection Tips
- • Monitor for SocGholish infections
- • Watch for Evil Corp TTPs
MITRE ATT&CK Techniques
T1486, T1490
If You're Infected
- 1.
Verify OFAC sanctions implications before any payment
- 2.
Engage incident response
Related Malware
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required