Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get a Demo
Back to Resources

🇺🇦 SentinelOne Vs. Hermetic Wiper – A Destructive Malware Used In Cyber Attacks on Ukraine

Video
🇺🇦 SentinelOne Vs. Hermetic Wiper – A Destructive Malware Used In Cyber Attacks on Ukraine

On February 23rd, the threat intelligence community began observing a new wiper malware sample circulating in Ukrainian organizations. To read more, visit https://s1.ai/hermetic

Visit SentinelOne – Ukraine Crisis Response Center – https://www.sentinelone.com/lp/ukraine-response/

Our analysis shows it is a Wiper that is using a signed driver, that is deploying a wiper that arises Windows devices, after deleting shadow copies and manipulating MBR after rebooting.

This blog includes the technical details of the wiper, dubbed HermeticWiper, and includes IOCs to allow organizations to stay protected from this attack.

This sample is actively being used against Ukrainian organizations, and this blog will be updated with more information becomes available.

SentinelOne customers are protected from this threat, no action is needed.

#ransomware #cybersecurity #endpointprotection #endpointsecurity #infosec #SUGER #macos

Watch Now
macOS Ransomware
Related Resources
Video
RSAC 2025: Join SentinelOne
Video
Is DeepSeek a Cybersecurity Threat? SentinelOne’s Alex Stamos Answers.
Video
SentinelOne and Aston Martin F1 Team
Video
LABScon24 Replay | Resilience and Protection in the Windows Ecosystem | Weston & Zetter

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo