Posts tagged Radamant

Radamant targets Windows OS and is distributed via the Rig exploit kit. It creates auto-run registry keys to establish and maintain persistence, contacts its C2 servers, scans all drives, deletes Shadow Volume Copies, and encrypts targeted files using AES-256. Encrypted files will display either the .RDM (first version) or .RRK (second version) file extensions.

Read More