Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Conti - Ransomware

A new ransomware family known as Conti was discovered using multiple techniques to find files to attack and how the encryption process is carried out. The malware uses multiple threads to encrypt files at a faster rate compared to other ransomware families and contains command-line options to scan for local files as well as remote files over SMB shares. Conti also uses the Windows Restart Manager to free up files that are open by various applications. The ransomware uses AES-256 encryption and requires the victim to email the threat actor for the decryption key.
Name Modified Date Sources
Conti - Ransomware 2020-07-15