Deep Dive Into Allegedly AI-Generated FunkSec Ransomware
NetmanageIT OpenCTI - opencti.netmanageit.com

SUMMARY :
A new Rust-based ransomware called FunkSec has emerged, claiming to use artificial intelligence in its development. First appearing in 2024, it demonstrates a mix of sophisticated capabilities and developmental inconsistencies. FunkSec implements advanced features like XChaCha20 encryption and comprehensive anti-VM techniques, but also shows peculiarities such as dependency on downloading a specific wallpaper image. The malware disables Windows security features, establishes persistence via scheduled tasks, and targets multiple file extensions. It employs various evasion techniques, including disabling event logging and real-time protection. The ransomware's execution reveals technical anomalies, suggesting it may still be in development and could evolve further.
OPENCTI LABELS :
ransomware,evasion techniques,persistence,anti-vm,funksec,ai-generated
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Deep Dive Into Allegedly AI-Generated FunkSec Ransomware