MedusaLocker

 1title: MedusaLocker
 2status: experimental
 3description: MedusaLocker key
 4author: Joe Security
 5date: 2022-11-11
 6id: 200108
 7threatname: MedusaLocker
 8behaviorgroup: 15
 9classification: 0
10mitreattack:
11
12logsource:
13    product: windows
14    category: registry_event
15detection:
16    selection:
17        EventID: 13
18        TargetObject:
19            - '*\Software\MDSLK*Self*'
20    condition: selection
21level: critical