pysa

INACTIVE

Mespinosa is a ransomware which encrypts file using an asymmetric encryption and adds .pysa as file extension. According to dissectingmalware the extension "pysa" is probably derived from the Zanzibari Coin with the same name.

0

Total Victims

First Seen

Unknown

Last Active

Unknown

Known Sites

1

Reference Links

[PYSA/Mespinoza Ransomware](https://thedfirreport.com/2020/11/23/pysa-mespinoza-ransomware/)https://unit42.paloaltonetworks.com/gasket-and-magicsocks-tools-install-mespinoza-ransomware/https://blogs.blackberry.com/en/2021/06/pysa-loves-chachi-a-new-golang-rat