Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get a Demo
Back to Resources

SentinelOne Demo: SentinelOne VS LuckBit Ransomware – Protection

Video
SentinelOne Demo: SentinelOne VS LuckBit Ransomware – Protection

In this video demonstration, we show how the SentinelOne Singularity XDR Platform protects against LuckBit ransomware. LuckBit ransomware emerged in October of 2023. The threat actors behind LuckBit have been observed requesting payment in terms of equivalency to the Malaysian Ringgit (MYR), with campaigns observed requesting up to the equivalent of 20 Million MYR, paid in BTC (Bitcoin). This currently works out to approximately 158 BTC or $4.2 million.

Victims are instructed to only contact the attacker after making the requested ransom payment. The ransom note contains the relevant contact details including an email address and a TOR-based web site/victim portal. LuckBit payloads will attempt to inhibit system recovery by removing Volume Shadow Copies (VSS) via VSSADMIN.EXE. Infected systems are modified to display the ransom note upon every boot or startup.

The SentinelOne Singularity XDR Platform can return systems to their original state.

~Subscribe to our channels:~
Website: https://www.sentinelone.com/
LinkedIn: https://www.linkedin.com/company/sentinelone/
Twitter: https://twitter.com/SentinelOne
Facebook: https://www.facebook.com/SentinelOne
Instagram: https://www.instagram.com/sentinelsec/
Threads: https://www.threads.net/@sentinelsec

Watch Now
Related Resources
Video
LABScon24 Replay | Kryptina RaaS: From Unsellable Cast-off to Enterprise Ransomware | Jim Walter
Video
RSAC 2025: Join SentinelOne
Video
Is DeepSeek a Cybersecurity Threat? SentinelOne’s Alex Stamos Answers.
Video
SentinelOne and Aston Martin F1 Team

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo