Rapport menaces et incidents - CERT-FR
Archived: 2026-04-05 18:13:45 UTC
Une gestion de version détaillée se trouve à la fin de ce document.
French version:
Active since September 2020, the Egregor ransomware is currently being used in Big Game Hunting operations.
Part of the Sekhmet malware family, Egregor is sometimes considered the successor to Maze. It is made available
to various affiliates, explaining the different chains of infection reported. Trojans such as Qakbot, Ursnif and
IcedID, can be used to deliver Egregor.
This report provides a synthesis of ANSSI’s knowledge on this malware.
Indicators of compromise are available on the page CERTFR-2020-IOC-006.
DOWNLOAD THE REPORT
Gestion détaillée du document
le 02 mars 2021
Version initiale
le 02 mars 2021
-
le 03 mars 2021
-
Source: https://www.cert.ssi.gouv.fr/cti/CERTFR-2021-CTI-007/
https://www.cert.ssi.gouv.fr/cti/CERTFR-2021-CTI-007/
Page 1 of 1