Decryptable PartyTicket Ransomware Reportedly Targeting Ukrainian Entities

Blog – crowdstrike.com

Summary On Feb. 23, 2022, destructive attacks were conducted against Ukrainian entities. Industry reporting has claimed the Go-based ransomware dubbed PartyTicket (or HermeticRansom) was identified at several organizations affected by the attack,1 among other families including a sophisticated wiper CrowdStrike Intelligence tracks as DriveSlayer (HermeticWiper).  Analysis of the PartyTicket ransomware indicates it superficially encrypts files […]