[ MALWARE MUTEX INTELLIGENCE DATABASE ]
 ███████╗██╗   ██╗██╗██╗         ███╗   ███╗██╗   ██╗████████╗███████╗██╗  ██╗
 ██╔════╝██║   ██║██║██║         ████╗ ████║██║   ██║╚══██╔══╝██╔════╝╚██╗██╔╝
█████╗  ██║   ██║██║██║         ██╔████╔██║██║   ██║   ██║   █████╗   ╚███╔╝
██╔══╝  ╚██╗ ██╔╝██║██║         ██║╚██╔╝██║██║   ██║   ██║   ██╔══╝   ██╔██╗
 ███████╗ ╚████╔╝ ██║███████╗    ██║ ╚═╝ ██║╚██████╔╝   ██║   ███████╗██╔╝ ██╗
 ╚══════╝  ╚═══╝  ╚═╝╚══════╝    ╚═╝     ╚═╝ ╚═════╝    ╚═╝   ╚══════╝╚═╝  ╚═╝

Advanced Malware Analysis & Threat Intelligence

06:17:11
[ALL_FAMILIES]

Moisha

ransomware1 mutex signatures

[BASIC_INFORMATION]

FAMILY_NAME:
Moisha
CATEGORY:
RANSOMWARE
DESCRIPTION:
Moisha is a ransomware family that has been observed in various cybercriminal campaigns. The malware is designed to encrypt files on victim systems and demand payment for decryption. It has been analyzed for its attack patterns and sophisticated encryption techniques, employing advanced evasion capabilities.
ALIASES:
Moisha Ransomware
TAGS:
file_encryptionextortioncybercriminalevasion_techniques

[MUTEX_SIGNATURES](1)

[MUTEX_01]
Global\__w3616de3-6u4b-32fc-97b1-de928faadf50
ANALYST: @adhikara13 DATE: 2024-07-16
REFERENCES:
https://cyble.com/blog/moisha-ransomware-in-action
https://app.any.run/tasks/11f66692-6cf7-4672-b6ba-a0095ac4dd3c

[QUICK_ACTIONS]

[THREAT_INTELLIGENCE]

ATTRIBUTION:
Unknown
FIRST_OBSERVED:
2024

[SIGMA_RULE]

[STATISTICS]
MUTEX_COUNT:1
THREAT_ACTORS:1
ALIASES:1
TAGS:4
CATEGORY:RANSOMWARE
 Malware profile loaded successfully 
 EvilMutex Project v1.0.0 
 Open Source Threat Intelligence Database 
[GITHUB][DOCS]