WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)

WinSCP is a tool used to facilitate file transfer using Secure Shell (SSH) File Transfer Protocol (FTP) for Microsoft Windows.^{[U.S. CISA Understanding LockBit June 2023]}

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Akira (923f478c-7ad1-516f-986d-61f96b9c553e)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1
Phobos Ransomware Actors (f138c814-48c0-4638-a4d6-edc48e7ac23a)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1
Black Basta Affiliates (7f52cadb-7a12-4b9d-9290-1ef02123fbe4)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	Akira Ransomware Actors (Deprecated) (0fcb2205-e75b-46c9-ac54-00f218d5e331)	Tidal Groups	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	Andariel (2cc997b5-5076-4eef-9974-f54387614f46)	Tidal Groups	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	BlackCat Ransomware Actors & Affiliates (33159d02-a1ce-49ec-a381-60b069db66f7)	Tidal Groups	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	RansomHub Ransomware Actors (94794e7b-8b54-4be8-885a-fd1009425ed5)	Tidal Groups	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	Play (60f686d0-ae3d-5662-af32-119217dee2a7)	Tidal Groups	1
WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	Play Ransomware Actors (Deprecated) (6eb50f82-86cc-4eff-b1d1-66e1c6fd74f3)	Tidal Groups	1
LockBit Ransomware Actors & Affiliates (d0f3353c-fbdd-4bd5-8793-a42e1f319b59)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1
UNC3966 (b07431f8-fcf0-4204-8e7c-138eb5cd5342)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1
Luna Moth (cca12ba9-f65f-4a29-87ab-a9fc0f99521f)	Tidal Groups	WinSCP (3ded75ea-b253-48cd-94e7-aef53e0d1e31)	Tidal Software	1