Prometheus (Malware Family)

Prometheus

Ransomware written in .NET, apparently derived from the codebase of win.hakbit (Thanos) ransomware.

References

2022-01-24 ⋅ CyCraft ⋅ CyCraft AI
The Road to Ransomware Resilience, Part 2: Behavior Analysis
Conti Prometheus WastedLocker

2021-11-01 ⋅ IBM ⋅ Aaron Gdanski, Limor Kessem
From Thanos to Prometheus: When Ransomware Encryption Goes Wrong
Hakbit Prometheus

2021-10-28 ⋅ Sentinel LABS ⋅ Jim Walter, Niranjan Jayanand
Spook Ransomware | Prometheus Derivative Names Those That Pay, Shames Those That Don’t
Prometheus

2021-10-05 ⋅ Medium s2wlab ⋅ S2W TALON
Prometheus x Spook: Prometheus ransomware rebranded Spook ransomware.
Prometheus

2021-09-24 ⋅ Twitter (@inversecos) ⋅ inversecos
A thread on TTPs of Prometheus Ransomware attacks
Prometheus

2021-08-01 ⋅ The Record ⋅ Catalin Cimpanu
Decryptor released for Prometheus ransomware victims
Prometheus

2021-07-15 ⋅ Cybereason ⋅ Cybereason Nocturnus
cybereason vs. prometheus ransomware
Hakbit Prometheus

2021-07-13 ⋅ Medium CyCraft ⋅ CyCraft Technology Corp
Prometheus Ransomware Decryptor
Prometheus

2021-06-09 ⋅ Palo Alto Networks Unit 42 ⋅ Doel Santos
Prometheus Ransomware Gang: A Group of REvil?
Hakbit Prometheus REvil

2021-05-10 ⋅ ID Ransomware ⋅ Andrew Ivanov
Prometheus Ransomware Haron Ransomware
Prometheus

There is no Yara-Signature yet.

Prometheus Propose Change

References

Prometheus