MetaEncryptor is a financially motivated ransomware group that first emerged in August 2022, initially demonstrating capabilities reminiscent of older ransomware families such as BlackCat (ALPHV) and Avaddon. Over time, the group refined its tactics, techniques, and procedures, incorporating multi-threaded encryption, runtime packing, and automated lateral movement scripts. A distinguishing characteristic of MetaEncryptor is its rebrand to the LostTrust ransomware operation, which occurred in late 2023, while maintaining similar operational methods and encryptor characteristics. The group's primary motivation is financial gain, achieved through a double extortion model involving data encryption and exfiltration, followed by threats to publish sensitive information. MetaEncryptor is notable for its employment of anti-forensic techniques, modular payloads, and carefully crafted phishing lures designed to circumvent traditional security measures.

Paises afectados

Sectores atacados

URLs nuevas detectadas en IntelTracker