Newly discovered Sugar ransomware is sold on the dark web as RaaS

February 17, 2022
New Sugar Ransomware Sold Black Market Dark Web RaaS Malware

A new threat strain called Sugar ransomware has been found being traded as a ransomware-as-a-service (RaaS) on the dark web. The ransomware landscape, as of now, is an ever-growing community that is always ready to be deployed by threat actors to inflict damage among entities worldwide.

The new malware strain dubbed Sugar is now being distributed to threat actors as a RaaS and was first spotted back in November last year, which at that time was written in Delphi language.

There are fewer details regarding the Sugar ransomware as of now because of the lack of return samples to study. However, experts believe that the newly discovered ransomware strain is designed by its operators to target individuals rather than a group of enterprise networks.

 

Unfortunately, researchers are still in the dark regarding this issue since they cannot identify the vector or the distribution mode of Sugar ransomware in infecting its victims.

 

Based on a study, the new ransomware has infected several users in multiple countries such as Thailand, Israel, Lithuania, Canada, and the United States.

After the execution of Sugar ransomware, it will encrypt files on the infected devices and attaches the extension named “encoded01.” The malware will then portray a ransom note on the target’s devices. The new ransomware always asks for a ransom of $4.01 bitcoin in every attack they make.

Oddly enough, some details regarding the ransom notes are identical to the messages deployed by the REvil, which raises suspicions regarding the new ransomware’s true origin.

The Tor sites utilised by the Sugar ransomware also resemble the area used by the Cl0p group.

The Sugar ransomware is in the introduction stage of being a threatening malware. They use a RaaS operation to expand their underground community influence further. Cybersecurity experts should monitor this new threat prepare for it in the future.

About the author

Leave a Reply