SentinelOne Vs. Astro Locker – Detect Mode

Watch how SentinelOne detects Astro Locker. Astro Locker (promoted and distributed by the “Astro Team”) is a new ransomware ‘family group’ that emerged in March 2021. They aim to disrupt as many environments as possible while maximizing profit through the shared “expertise.” We believe that Astro Locker and Mount Locker are connected (TTPs), and Mount Locker ties to Ragnar Locker. Starting April 2021, Astro Locker began promoting their partnerships with other ransomware families, including that with Mount Locker and Xing Locker. Astro Team and their partners actively maintain victim blogs on the Dark Web, and they even offer real-time chat support for their victims. The SentinelOne Singularity Platform prevents, detects, and mitigates malicious behaviors and artifacts associated with Astro Locker.

#cybersecurity​ #infosec​ #astrolocker​ #ransomware