Ransomware Research

RansomBoggs Ransomware

RansomBoggs is a malicious ransomware strain that encrypts victim files and demands ransom payment for decryption. First observed in the wild on November 1, 2022, this ransomware has been actively targeting systems worldwide. Security researchers also track this malware under the aliases: Sullivan.

Quick Facts

Ransomware Family
RansomBoggs
First Seen
November 1, 2022
Known Aliases
Sullivan

How RansomBoggs Ransomware Works

Targeted Files

NOSAMPLE sha256 from ESET -> 78dcf144e82e947c20f152a8a57376b43e7aac3fee4bf1d18d22d4c14b25e56f a490d03e780a6b664da65e20afa7845c6f79af60b6a496ff113bf9e9034e77d0

File Encryption Patterns

RansomBoggs modifies encrypted files using specific patterns to mark them as encrypted:

File extensions added after encryption:

..chsch

Ransom Note and Payment Demands

After encrypting files, RansomBoggs displays ransom notes demanding payment for file recovery:

fileSullivanDecryptsYourFiles.txt

Ransom message:

notes/SullivanDecryptsYourFiles.txt

Elastio Can Help You

Don't let RansomBoggs ransomware take over your data

Elastio provides advanced ransomware protection and recovery solutions to keep your organization safe.

About This Analysis

This RansomBoggs ransomware analysis is part of Elastio's comprehensive ransomware detection database. Elastio provides advanced ransomware protection and recovery solutions, helping organizations defend against and recover from ransomware attacks like RansomBoggs.

Last updated: July 30, 2025

RansomBoggs Ransomware - Detectable by Elastio