Trusted Design

TeslaCrypt C2 Communication

概要

TeslaCrypt is a ransomware variant that operates over public web-to-Tor gateways for C2 communication. It uses AES to encrypt common file types and demands the victim pay a ransom for their recovery. This ransomware is usually distributed as an email attachment or through websites that redirect the victim to the Angler Exploit Kit. This ransomware, like many others, encrypts document files including text, pdf, etc. to force victims to pay a ransom to have their files restored. Targeting files that users value highly makes ransomware very effective at getting users to pay the ransom. TeslaCrypt is interesting because it also targets and encrypts computer games files, such as saved games and Steam activation keys. This means that TeslaCrypt is targeting many different types of users, including PC gamers. Just like irreplaceable photos, a game save, which is the product of countless hours of gaming, is extremely valuable and hard to replace.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

• TeslaCrypt Ransomware (score: 0.77)
• TeslaCrypt 2.0: Cyber Crime Malware Behavior (score: 0.72)
• Threat Spotlight: TeslaCrypt (score: 0.70)
• NUCLEAR EK FROM 162.247.14.156 SENDS TESLACRYPT 2.0 (score: 0.70)
• New TeslaCrypt version (score: 0.65)

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る