SatanLock V2 is referenced in an ASEC Blog post published on July 10, 2025 covering “Ransom & Dark Web Issues Week 2, July 2025.” In the provided content, it is identified as a ransomware group and is specifically mentioned in connection with a sudden shutdown announcement. No additional high-confidence details about its targets, tactics, techniques, geographic attribution, nation-state affiliation, sub-groups, or operations are provided in the available content. Known alias in the provided content: satanlock_v2.
Mallory correlates actor tradecraft and target patterns against your stack, your sector, and your geography. See overlap before they land.
1 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
Match sector + geo + tech-stack targeting against your real footprint.
Every observed MITRE ATT&CK technique, grouped by tactic.
Families this actor is known to deploy, with IOCs and behavior.
CVEs this actor has used in known campaigns.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Domains, IPs, and hashes tied to this actor, refreshed continuously.