ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool Grief

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Grief

NamesGrief
Pay or Grief
CategoryMalware
TypeRansomware, Big Game Hunting
Description(Zscaler) An early Grief ransomware (aka Pay or Grief) sample was compiled on May 17, 2021. This sample is particularly interesting because it contains the Grief ransomware code and ransom note, but the link in the ransom note points to the DoppelPaymer ransom portal. This suggests that the malware author may have still been in the process of developing the Grief ransom portal. Ransomware threat groups often rebrand the name of the malware as a diversion.
Information<https://www.zscaler.com/blogs/security-research/doppelpaymer-continues-cause-grief-through-rebranding>
<https://redcanary.com/blog/grief-ransomware/>
<https://socradar.io/dark-web-threat-profile-grief-ransomware-group/>

Last change to this tool card: 26 December 2021

Download this tool card in JSON format

All groups using tool Grief

ChangedNameCountryObserved

APT groups

 Doppel SpiderRussia2019-Sep 2023X

1 group listed (1 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]