Ransomware - RALord

RALord
Description

This entry is under construction. However, we have included some details below.

Ransomware Type
Crypto-Ransomware
Data Broker
RaaS
First Seen
Last Seen
Lineage
RA Group
Threat Actors
Type
Actor
Administrator
ForLord
Extortion Links
Medium
Link
TOR
ralord3htj7v2dkavss2hjzviviwgsf4anfdnihn5qcjl6eb5if3cuqd.onion
TOR
ralordqe33mpufkpsr6zkdatktlu3t2uei4ught3sitxgtzfmqmbsuyd.onion
TOR
ralordt7gywtkkkkq2suldao6mpibsb7cpjvdfezpzwgltyj2laiuuid.onion
Extortion Types
Direct Extortion
Double Extortion
Free Data Leaks
Communication
Medium
Identifier
Session Messenger
054f55ec93aca9bac362b9d91eff36a7ce451e7caba47c0b2e004ba429f9529c79
Tox
0C8E5B45C57AE244E9C904C5BC74F73306937469D9CEA22541CA69AC162B8D42A20F4C0382AC
Tox
8E9A6195A769FE7115F087C61D75CF32874C339B3AB0947D07480C9A8A12DA5009151BE6A51F
Encryption
Type
Symmetric
Files
RC4 PRGA
File Extension
<file name>.RALord
Ransom Note Name
README-<12 random alphanumeric characters>.txt
Ransom Note Image
RALord-RansomNote-456b9
Click to enlarge
Samples (SHA-256)
456b9adaabae9f3dce2207aa71410987f0a571cd8c11f2e7b41468501a863606
Industry Sector Country Extortion Date Amount (USD)
Engineering Services Argentina
Sports & Gaming France
Education France
Agriculture Brazil
Charity & Nonprofits Spain
Food & Beverage Taiwan
References & Publications
GitHub: TheRavenFile - RA Lord Ransomware
Ransomware Tracker