Download Tor browser from external URL and create a shortcut file
As a result of hunting for the SugarLocker ransomware, it is presumed that the operator has been producing SugarLocker ransomware since at least early 2021. It seems that ransomware has actually been distributed since the second half of last year, but no attack cases have been confirmed so far. They do not operate a data leak site, and it seems that the ransomware name has been changed recently, so it does not appear to be active yet.
However, the ransomware functionalities were continuously updated until the end of last year, so it looks like they’re going to start full operations once partners are successfully recruited.