PanelActoresCampanasMapaTTPs
Panel » Actores » chort
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
chort logo

chort

1 incidentes 1 paises 1 sectores ransomware RU Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
Chort is a newly identified English-speaking ransomware group, also known by the aliases Chort RS Group, Chort Ransomware, and ChortLocker. The name 'Chort' means 'Devil' in Russian, which aligns with common naming conventions for such groups. The group likely began operations in September 2024, with its data leak site (DLS) becoming active by October 29, 2024, and a Telegram channel established on November 15, 2024. Chort primarily focuses on financially motivated double extortion, exfiltrating sensitive data from victims before encrypting their files and demanding a ransom for data decryption and safe return. A notable characteristic of their early activity is a particular focus on the United States education sector.

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

KuwaitUnited States

Sectores atacados

Finance (1)

Sectores objetivo (SOCRadar)

Agriculture&ForestryManufacturingInformation ServicesProfessional&Technical ServicesEducational ServicesOtherPublic AdministrationElectrical&Electronical ManufacturingElectrical Equipment, Appliance, and Component ManufacturingOther Information Services

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com