This report highlights ransomware activities in January 2025, detailing the number of new ransomware samples, targeted systems, and impacted companies. The statistics reveal a consistent trend in ransomware incidents, with specific insights into the businesses targeted by various ransomware groups. Affected: ransomware groups, targeted businesses
Keypoints :
- The number of new ransomware samples in January 2025 was slightly higher than in December 2024.
- Statistics on targeted businesses were collected from ransomware groups’ Dedicated Leak Sites (DLS).
- AhnLab’s detection methodology was used to record the number of ransomware samples and damaged systems.
- The report includes a comparison of data collected over time, noting delays in data gathering from certain groups.
- Specific MD5 hashes of ransomware samples were provided in the report.
MITRE Techniques :
- T1486: Data Encrypted for Impact – Ransomware groups targeted businesses to encrypt their data.
- T1485: Data Destruction – Some reports suggest destruction of data when companies do not pay the ransom.
Indicator of Compromise :
- MD5 039f85a7670428430274476cbe733db4
- MD5 1d14c901f4c5189c227162bb9c7179d6
- MD5 22f87b2d6c78a6be11947ab1acb7902f
- MD5 5839c9adab7574b90dcfc76bf0a83000
- MD5 73744280fb8e7db578c9303b7620fb16
Full Story: https://asec.ahnlab.com/en/86339/