【ニュース】
◆新たな驚異的ランサムウェア「サノス(Thanos)」がダークネットに登場 (Coin Choice, 2020/06/29)
https://coinchoice.net/new-ransomware-thanos-on-darkweb_202006/
⇒ https://malware-log.hatenablog.com/entry/2020/06/29/000000_4
◆Thanos Ransomware adds Windows MBR locker that fails every time (BleepingComputer, 2020/09/04 12:29)
[Thanosランサムウェアが毎回失敗するWindows MBRロッカーを追加]
https://www.bleepingcomputer.com/news/security/thanos-ransomware-adds-windows-mbr-locker-that-fails-every-time/
⇒ https://malware-log.hatenablog.com/entry/2020/09/04/000000_4
【ブログ】
◆Thanos Ransomware | RIPlace, Bootlocker and More Added to Feature Set (SentinelLABS, 2020/07/01)
https://labs.sentinelone.com/thanos-ransomware-riplace-bootlocker-and-more-added-to-feature-set/
⇒ https://malware-log.hatenablog.com/entry/2020/07/01/000000_10
【Twitter】
◆Thanos Ransomware attack asking for $20k (JAMESWT, 2020/07/10)
◇1° Run
https://app.any.run/tasks/e2ef6d92-1b44-45bd-a60d-17865685bb13/
◇2° Run
https://app.any.run/tasks/c67a34a1-7279-4087-8968-0bdcb1c053db/
◇Genes
https://analyze.intezer.com/#/analyses/8ab06f41-e74c-47d1-bac6-b153a65c6548
◇Sample
https://bazaar.abuse.ch/sample/58bfb9fa8889550d13f42473956dc2a7ec4f3abb18fd3faeaa38089d513c171f/https://twitter.com/JAMESWT_MHT/status/1281515013132496896?s=20
◆Thanos builder used to create new ransomware (Jirí Vinopal(Twitter), 2022/01/28)
拡張子: .NARUMI
【VirusTotal】
◆f9533288e6a7279195902c8691d5f223c77015fa332b56e23aeec3581c0cdbdb
https://www.virustotal.com/gui/file/f9533288e6a7279195902c8691d5f223c77015fa332b56e23aeec3581c0cdbdb/community
【関連まとめ記事】
◆ランサムウェア (まとめ)
https://malware-log.hatenablog.com/entry/Ransomware