diff --git a/clusters/ransomware.json b/clusters/ransomware.json
index 0cfdb14c..a5098b1d 100644
--- a/clusters/ransomware.json
+++ b/clusters/ransomware.json
@@ -13619,7 +13619,23 @@
       },
       "uuid": "21b349c3-ede2-4e11-abda-1444eb272eff",
       "value": "Clop"
+    },
+    {
+      "description": "The cybercrime group that brought us Satan, DBGer and Lucky ransomware and perhaps Iron ransomware, has now come up with a new version or rebranding named 5ss5c. [...] It will however only encrypt files with the following extensions: 7z, bak, cer, csv, db, dbf, dmp, docx, eps, ldf, mdb, mdf, myd, myi, ora, pdf, pem, pfx, ppt, pptx, psd, rar, rtf, sql, tar, txt, vdi, vmdk, vmx, xls, xlsx, zip",
+      "meta": {
+        "ransomnotes-filenames": [
+          "_如何解密我的文件_.txt"
+        ],
+        "ransomnotes-refs": [
+          "https://1.bp.blogspot.com/-T0B4txHlNHs/Xh4-raVFVtI/AAAAAAAACTE/R-YoW8QHFLsuD140AF9vD-_rOifULExUgCLcBGAsYHQ/s1600/note.PNG"
+        ],
+        "refs": [
+          "https://bartblaze.blogspot.com/2020/01/satan-ransomware-rebrands-as-5ss5c.html"
+        ]
+      },
+      "uuid": "8ac9fc73-05db-4be8-8f46-33bbd6b3502b",
+      "value": "5ss5c Ransomware"
     }
   ],
-  "version": 76
+  "version": 77
 }