Egregor (0e36b62f-a6e2-4406-b3d9-e05204e14a66)
Egregor is a Ransomware-as-a-Service (RaaS) tool that was first observed in September 2020. Researchers have noted code similarities between Egregor and Sekhmet ransomware, as well as Maze ransomware.[NHS Digital Egregor Nov 2020][Cyble Egregor Oct 2020][Security Boulevard Egregor Oct 2020]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| WANDERING SPIDER (c88e3c8d-cb71-48e1-a2c4-5f00300dfa0b) | Tidal Groups | Egregor (0e36b62f-a6e2-4406-b3d9-e05204e14a66) | Tidal Software | 1 |