like most ransomware, Scarab is asking for a Bitcoin payment from its victims after encrypting files on their systems. Scarab is using an encrypted mshta command to delete shadow copy. On this video, you can see how SentinelOne agent is capable of detecting it pre-execution using static AI and after running with Behavioral AI -~-