DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)

DEATHRANSOM is ransomware written in C that has been used since at least 2020, and has potential overlap with FIVEHANDS and HELLOKITTY.(Citation: FireEye FiveHands April 2021)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
System Information Discovery - T1082 (354a7f88-63fb-41b5-a801-ce3b377b36f1)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
System Language Discovery - T1614.001 (c1b68a96-3c48-49ea-a6c0-9b27359f9c19)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
Network Share Discovery - T1135 (3489cfc5-640f-4bb3-a103-9137b97de79f)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
Inhibit System Recovery - T1490 (f5d8eed6-48a9-4cdf-a3d7-d1ffa99c3d2a)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
File and Directory Discovery - T1083 (7bc57495-ea59-4380-be31-a64af124ef18)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	Ingress Tool Transfer - T1105 (e6919abc-99f9-4c6c-95a5-14761e7b2add)	Attack Pattern	1
DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	Web Protocols - T1071.001 (df8b2a25-8bdf-4856-953c-a04372b1c161)	Attack Pattern	1
Data Encrypted for Impact - T1486 (b80d107d-fa0d-4b60-9684-b0433e8bdba0)	Attack Pattern	DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	1
DEATHRANSOM - S0616 (6de9cad1-eed2-4e27-b0b5-39fa29349ea0)	Malware	Windows Management Instrumentation - T1047 (01a5a209-b94c-450b-b7f9-946497d91055)	Attack Pattern	1
System Language Discovery - T1614.001 (c1b68a96-3c48-49ea-a6c0-9b27359f9c19)	Attack Pattern	System Location Discovery - T1614 (c877e33f-1df6-40d6-b1e7-ce70f16f4979)	Attack Pattern	2
Application Layer Protocol - T1071 (355be19c-ffc9-46d5-8d50-d6a036c675b6)	Attack Pattern	Web Protocols - T1071.001 (df8b2a25-8bdf-4856-953c-a04372b1c161)	Attack Pattern	2