Welcome to the Dragon-RansomwareHQ repository. This repository provides detailed information about various ransomware families, including their behaviors, Indicators of Compromise (IOCs), and ransom notes. Each ransomware family is documented in its own dedicated directory for ease of access and organization.
Each directory contains the following:
- Overview: A general description of the ransomware, its targets, and its operation timeline.
- IOCs: Indicators of Compromise specific to the ransomware family.
- Notes: Examples of ransom notes and other related documents.
- MITRE ATT&CK Tactics and Techniques: Detailed listing of the tactics and techniques used by the ransomware according to the MITRE ATT&CK framework.
- Spread Mechanisms: Information on how the ransomware spreads.
- Encryption Details: Specifics about the file encryption process and any unique behaviors.
- Screenshots: Visual representations of the ransomware's activity, ransom notes, or encryption process.
We welcome contributions to enhance and expand the information provided in this repository. Please feel free to submit pull requests or open issues with any new findings or corrections.
Waiting
Dragon-RansomwareHQ/
│
├── CactusRansomware/
│ ├── IOCs/
│ ├── Notes/
│ └── README.md
│
├── INCRansomware/
│ ├── IOCs/
│ ├── Notes/
│ └── README.md
│
├── RhysidaRansomware/
│ ├── IOCs/
│ ├── Notes/
│ └── README.md
│
└── README.md