Hunters International Ransomware
Technical Analysis

Hunters International ransomware is believed to have first been discovered in October 2023 and operates using a Ransomware as a Service (RaaS) model. It is thought to share similarities with the Hive ransomware in the past. The sample provided for technical analysis is written in Rust.

The ransomware utilizes sophisticated techniques, including execution via command-line arguments and ongoing operations based on disk, system, service, and process controls. It generates random AES keys and subsequently encrypts them with an RSA public key. After encrypting the files, it appends the “.locked” extension to the affected files. Additionally, it creates a “Contact Us.txt” file containing credentials that allow the threat actor to communicate effectively with the victims.

What You Will Find In This Report?

Learn Technical Method of Operation Details


You will find the technical details of the Hunters International, its functions, and details about cyber attack tactics. The report will show many points about its technical details, detections, and IoCs.

Gain Knowledge About Future Attacks



By understanding its attack model, you can make more informed predictions about the future of cybersecurity. Stay up-to-date with the latest trends and keep your business from potential threats.

Response & Mitigation Tactics From Experts


You can reach the exclusive details to produce proactive solutions. The Hunters employs sophisticated techniques to avoid analysis by security researchers. You need experts' perspective.

A Free Guide To CTOs SOC Teams CTI Analysts