Earlier we told that a encrypted archive with the alleged source code of GTA: San Andreas appeared on the network. Craftsmen were able to unlock the file, and as it turned out, the archive contained a ransomware program.
This was reported by a fan of the GTA series and a programmer from X (formerly Twitter) under the nickname Pliskin. The user showed the contents of the archive, which contained the database, the 17 MB executable file of the game, as well as another such archive named “gtasa”, which contained two Rhysida files.
Rhysida is a group of ransomware viruses that steal data from a computer, after which the hackers demand a ransom from the victim for the information, or a fee for maintaining its confidentiality. If the victim refuses to pay, his data goes to the darknet, where it is later resold. The US Health Cybersecurity Coordinating Center reports that Rhysida was first spotted in May 2023.
Pliskin refused to provide the password for the archive, allegedly because he did not want to cause problems, which caused some users to express distrust in the veracity of the information. But let's be honest, a locked archive has suddenly appeared with the supposed source code of a game from 20 years ago, which really looks weird.