SYMBOLCOMMON_NAMEaka. SYNONYMS
win.midas (Back to overview)

Midas


This malware written in C# is a variant of the Thanos ransomware family and emerged in October 2021 and is obfuscated using SmartAssembly. In 2022, ThreatLabz analysed a report of Midas ransomware was slowly deployed over a two month period (ZScaler). This ransomware features also its own data leak site as part of its double extortion strategy.

References
2022-03-23ZscalerRajdeepsinh Dodia
Midas Ransomware : Tracing the Evolution of Thanos Ransomware Variants
Hakbit Midas
2022-03-23Security BoulevardRajdeepsinh Dodia
Midas Ransomware : Tracing the Evolution of Thanos Ransomware Variants
Hakbit Midas
2022-01-25SophosAndrew Brandt
Windows services lay the groundwork for a Midas ransomware attack
Midas

There is no Yara-Signature yet.