PanelActoresCampanasMapaTTPs
Panel » Actores » sugar
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
sugar logo

sugar

1 incidentes 0 paises 0 sectores ransomware RU Ultimo: 2026-06-25
Aliases: Encoded01
Ver en IntelTracker → APTTrail →
Sugar is a Ransomware-as-a-Service (RaaS) operation that first emerged in November 2021. Unlike most ransomware groups that target large enterprises, Sugar specifically focuses on individuals and small to medium-sized businesses, demanding relatively low ransom amounts based on the number of encrypted files. The group, also known by the aliases Encoded01 and SugarLocker, primarily operates using malware written in Delphi. Between December 2024 and January 2025, the operators behind Sugar were observed deploying a re-branded version of their payload known as "Starpoint," which is functionally identical to the original Sugar ransomware.
Tecnicas MITRE
T1190, T1078.003, T1059.001, T1562.001

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

CanadaGuyanaIsraelLithuaniaThailandUnited States

Sectores objetivo (SOCRadar)

Food ManufacturingOther Information ServicesEnterprises & HoldingManufacturingPublic AdministrationOil & GasEnergy & Utilities InsuranceTelecommunicationsRetail

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com