Ransomware Research
RansomBoggs Ransomware
RansomBoggs is a malicious ransomware strain that encrypts victim files and demands ransom payment for decryption. First observed in the wild on November 1, 2022, this ransomware has been actively targeting systems worldwide. Security researchers also track this malware under the aliases: Sullivan.
Quick Facts
- Ransomware Family
- RansomBoggs
- First Seen
- November 1, 2022
- Known Aliases
- Sullivan
How RansomBoggs Ransomware Works
Targeted Files
NOSAMPLE sha256 from ESET -> 78dcf144e82e947c20f152a8a57376b43e7aac3fee4bf1d18d22d4c14b25e56f a490d03e780a6b664da65e20afa7845c6f79af60b6a496ff113bf9e9034e77d0
File Encryption Patterns
RansomBoggs modifies encrypted files using specific patterns to mark them as encrypted:
File extensions added after encryption:
..chschRansom Note and Payment Demands
After encrypting files, RansomBoggs displays ransom notes demanding payment for file recovery:
SullivanDecryptsYourFiles.txtRansom message:
notes/SullivanDecryptsYourFiles.txt
Elastio Can Help You
Don't let RansomBoggs ransomware take over your data
Elastio provides advanced ransomware protection and recovery solutions to keep your organization safe.
About This Analysis
This RansomBoggs ransomware analysis is part of Elastio's comprehensive ransomware detection database. Elastio provides advanced ransomware protection and recovery solutions, helping organizations defend against and recover from ransomware attacks like RansomBoggs.
Last updated: July 30, 2025