Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get a Demo
Back to Resources

SentinelOne Vs. Delta Ransomware – Mitigation and Rollback

Video
SentinelOne Vs. Delta Ransomware – Mitigation and Rollback

See how SentinelOne mitigates and rolls back Delta Ransomware. Delta (aka AsupQue) is a recently discovered commodity ransomware family. Delta rapidly encrypts all files on local disks, then instructs the victim to contact the attacker via email. In addition to encrypting data, Delta will attempt to disrupt recovery by destroying Volume Shadow Copies (via vssadmin). In addition, the malware launches numerous wevtutil.exe processes in order to tamper with Windows Event/System Logs and ETW tracing. The ransom note is written in the form of a .HTA file, located in all folders containing encrypted files. To date, all samples analyzed require administrative/elevated privileges to execute and encrypt, though it does appear to ‘attempt’ some level of UAC bypass.

#ransomware #cybersecurity #infosec #ciso #malware

Watch Now
Ransomware
Related Resources
Video
RSAC 2025: Join SentinelOne
Video
Is DeepSeek a Cybersecurity Threat? SentinelOne’s Alex Stamos Answers.
Video
SentinelOne and Aston Martin F1 Team
Video
LABScon24 Replay | Resilience and Protection in the Windows Ecosystem | Weston & Zetter

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo