A new ransomware strain detected by CrowdStrike researchers closely resembles the BitPaymer ransomware used by the Indrik Spider group. The new variant, dubbed DoppelPaymer, emerged on the scene in June of this year and has been targeting organizations in campaigns involving large ransom demands.
The researchers believe the threat actor behind DoppelPaymer may be a (former) Indrik Spider member pursuing a solo-career in “big game hunting,” which refers to campaigns going after specific targets like “municipalities, industrial/manufacturing, healthcare, and targets which cannot accept downtime.” Big game hunters demand large payouts from their targets based on the assumption “that these victims are not prepared to recover and the cost of ransom is less than the cost of downtime.”
Read more: Meet DoppelPaymer, BitPaymer’s Ransomware Lookalike