The Anatomy of Abyss Locker Ransomware Attack

216.73.217.80

The Anatomy of Abyss Locker Ransomware Attack

· Published 10/02/2025 20:51 · Modified 10/02/2025 20:58

Essential information

Published: 10/02/2025 20:51
Modified: 10/02/2025 20:58
Tags: 2025-02-10 abyss locker backdoor chisel defender esxi file impact locker patch persistence psexec ransomware rclone remcom restrict service smbexec ssh tunneling story strong velvet vulnerable
Related entities: 15 observables, 23 techniques (mitre), 1 malware

Description

Abyss Locker (AKA Abyss ransomware) is a relatively new threat group that emerged in 2023, specializing in swift and decisive intrusions designed to cripple victims with ransomware. Abyss Locker was active throughout 2024, causing multiple incidents investigated by Sygnia. However, no recent technical blogs provide detailed insights into the group’s modus operandi.

External references

https://www.sygnia.co/blog/abyss-locker-ransomware-attack-analysis/
https://otx.alienvault.com/pulse/67aa66d6dee5419a88a0d61e

The Anatomy of Abyss Locker Ransomware Attack

Essential information

Description

Related entities

Observables (15)

Techniques (MITRE) (23)

Malware (1)

External references