PanelActoresCampanasMapaTTPs
Panel » Actores » prometheus
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
prometheus logo

prometheus

1 incidentes 0 paises 0 sectores ransomware RU Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
Prometheus is a ransomware group that emerged in February 2021, operating a double extortion model where victim data is encrypted and threatened with public release if ransom demands are not met. The group functions like a professional enterprise, managing victim interactions through a unique customer service ticketing system that includes payment countdowns and refers to victims as "customers." While Prometheus claimed an affiliation with the prominent REvil ransomware group, cybersecurity researchers found no evidence to support this assertion, suggesting it was a tactic to bolster their reputation and increase pressure on victims. Prometheus is recognized for being a variant of the Thanos ransomware, utilizing the Thanos builder for its payloads. Its primary motivation is financial gain through these illicit ransomware operations, but its origin remains unconfirmed.
Tecnicas MITRE
T1199, T1071, T1190, T1123, T1105, T1490

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

United Arab EmiratesAustriaBelgiumBrazilSwitzerlandFranceUnited KingdomGhanaItalyMexico

Sectores objetivo (SOCRadar)

Food ManufacturingOther Information ServicesMonetary Authorities-Central BankAccommodationManufacturingPublic AdministrationOil & GasEducational ServicesEnergy & Utilities Insurance

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com