Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get a Demo
Back to Resources

SentinelOne Vs. HelloXD Ransomware – Detection and Prevention

Video
SentinelOne Vs. HelloXD Ransomware – Detection and Prevention

The HelloXD ransomware family was first observed in late 2021. The ‘commercial’ ransomware is tied to specific sellers active in known ‘underground’ forums/marketplaces. Over the last couple of months, operators of HelloXD have increased activity and introduced updated versions of the HelloXD payload. The most recent updates are focused on detection evasion and the speed/efficiency of encryption.

Upon infection, victims are instructed to contact the attacker(s) via Tox Chat.
HelloXD also attempts to inhibit recovery by deleting Volume Shadow Copies (VSS).
In some of the recent campaigns, the attackers are also leveraging an open-source backdoor tool (MicroBackdoor).

#cybersecurity #ransomware #XDR #mindware

Watch Now
Ransomware XDR
Related Resources
Video
RSAC 2025: Join SentinelOne
Video
Is DeepSeek a Cybersecurity Threat? SentinelOne’s Alex Stamos Answers.
Video
SentinelOne and Aston Martin F1 Team
Video
LABScon24 Replay | Resilience and Protection in the Windows Ecosystem | Weston & Zetter

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo