Dagon Locker is a ransomware group that emerged in September 2022 as an evolution of Quantum ransomware, also noted as an updated variant of Mount Locker ransomware. Operating as a Ransomware-as-a-Service (RaaS) model, the group's primary motivation is financial gain through double extortion, demanding payment for data decryption and threatening to leak exfiltrated sensitive information. A defining characteristic of Dagon Locker is its use of strong encryption algorithms, specifically AES-256 and RSA-4096, combined with appending the unique ".dagon" or ".dagoned" extension to encrypted files. The group is distinguished by its direct lineage from earlier ransomware strains and its consistent application of double extortion tactics, including the use of dark web leak sites for public pressure.

URLs nuevas detectadas en IntelTracker