[ MALWARE MUTEX INTELLIGENCE DATABASE ]
 ███████╗██╗   ██╗██╗██╗         ███╗   ███╗██╗   ██╗████████╗███████╗██╗  ██╗
 ██╔════╝██║   ██║██║██║         ████╗ ████║██║   ██║╚══██╔══╝██╔════╝╚██╗██╔╝
█████╗  ██║   ██║██║██║         ██╔████╔██║██║   ██║   ██║   █████╗   ╚███╔╝
██╔══╝  ╚██╗ ██╔╝██║██║         ██║╚██╔╝██║██║   ██║   ██║   ██╔══╝   ██╔██╗
 ███████╗ ╚████╔╝ ██║███████╗    ██║ ╚═╝ ██║╚██████╔╝   ██║   ███████╗██╔╝ ██╗
 ╚══════╝  ╚═══╝  ╚═╝╚══════╝    ╚═╝     ╚═╝ ╚═════╝    ╚═╝   ╚══════╝╚═╝  ╚═╝

Advanced Malware Analysis & Threat Intelligence

06:17:10
[ALL_FAMILIES]

Lorenz

ransomware1 mutex signatures

[BASIC_INFORMATION]

FAMILY_NAME:
Lorenz
CATEGORY:
RANSOMWARE
DESCRIPTION:
Lorenz is a ransomware family operated by the Lorenz Group, known for targeting organizations and demanding cryptocurrency payments for file decryption. The malware uses sophisticated encryption techniques and is designed to evade detection.
ALIASES:
Lorenz ransomware
TAGS:
ransomwarefile_encryptionaptdata_exfiltration

[MUTEX_SIGNATURES](1)

[MUTEX_01]
wolf
ANALYST: @adhikara13 DATE: 2024-07-19
REFERENCES:
https://lmntrix.com/blog/lmntrix-vs-lorenz-ransomware/

[QUICK_ACTIONS]

[THREAT_INTELLIGENCE]

ATTRIBUTION:
lorenz group
FIRST_OBSERVED:
Unknown

[SIGMA_RULE]

[STATISTICS]
MUTEX_COUNT:1
THREAT_ACTORS:1
ALIASES:1
TAGS:4
CATEGORY:RANSOMWARE
 Malware profile loaded successfully 
 EvilMutex Project v1.0.0 
 Open Source Threat Intelligence Database 
[GITHUB][DOCS]