Malware
221

BlackCat Ransomware | Highly-Configurable, Rust-Driven RaaS






  22-Jan-2022 01:56:46



BlackCat (aka AlphaVM, AlphaV) is a newly established RaaS (Ransomware as a Service) with payloads written in Rust. While BlackCat is not the first ransomware written in the Rust language, it joins a small sliver of the malware landscape making use of this popular cross-platform language. First appearing in late November, BlackCat has reportedly been attacking targets in multiple countries, including Australia, India and the U.S, and demanding ransoms in the region of $400,000 to $3,000,000 in Bitcoin or Monero.

REFERENCE:
https://www.sentinelone.com/labs/blackcat-ransomware-highly-configurable-rust-driven-raas-on-the-prowl-for-victims/
MALWARE FAMILIES:
BlackCatCobalt Strike - S0154
ATT&CK IDS:
T1027.002 - Software PackingT1027 - Obfuscated Files or InformationT1007 - System Service DiscoveryT1059 - Command and Scripting InterpreterT1082 - System Information DiscoveryT1490 - Inhibit System RecoveryT1485 - Data DestructionT1078 - Valid AccountsT1486 - Data Encrypted for ImpactT1140 - Deobfuscate/Decode Files or InformationT1202 - Indirect Command ExecutionT1543.003 - Windows ServiceT1550.002 - Pass the Hash

File Type
PEXE - PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Compilation Date
December 12th, 2021 - 3:20:36 AM
Size
2627 KB (2690560 bytes)
MD5
bb266486ee8ac70c0687989e02cefa14
SHA1
11203786b17bb3873d46acae32a898c8dac09850
SHA256
0c6f444c6940a3688ffc6f8b9d5774c032e3551ebbccb64e4280ae7fc1fac479
IMPHASH
2c3e267ae163c15bfc251e74ea5319b2
PEHASH
da216245d57679c832327bb10930159bc66e22b8
External Resources VirusTotal

DISCUSSION
Nothing comment here :(
Login for comment and discussion.
Login Here
Sponsored

Oppss... No sponsors yet

Popular Posts
Complete Basic Course in Kali...
Djie sam soe Djie sam soe
Linux
9818
2
Top

Gps Tracker Seccodeid Free Too...
Djie sam soe Djie sam soe
General
6127
167
Top

Free Proxy List
Sandidi Sandidi
Networking
3047
3
Top

Mass Reverse IP Unlimited
ImamWawe ImamWawe
Tools Hacking
2330
11
Top

Report McAfee Antivirus Hurrri...
Indrasp Indrasp
Windows
1682
93
Top

Related Post

Youtube Video

Subscribe