FIVEHANDS (84187393-2fe9-4136-8720-a6893734ee8c)
FIVEHANDS is a customized version of DEATHRANSOM ransomware written in C++. FIVEHANDS has been used since at least 2021, including in Ransomware-as-a-Service (RaaS) campaigns, sometimes along with SombRAT.[FireEye FiveHands April 2021][NCC Group Fivehands June 2021]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| FIVEHANDS (84187393-2fe9-4136-8720-a6893734ee8c) | Tidal Software | Vice Society (2e2d3e75-1160-4ba5-80cc-8e7685fcfc44) | Tidal Groups | 1 |