Egregor

Egregor ransomware encrypts business users’ data with AES+RSA and then requires contact within 3 days for a Bitcoins ransom to get the files back. Distributers Egregor threatens to publish the stolen data in order to increase pressure on the victim. To do this, ransomware operators begin to steal data even before encrypting files. In some info, we know that Maze operators switched to Egregor.