Members of the Conti ransomware group appear to have splintered into multiple threat groups including BlackBasta, which has become one of the most significant ransomware threats. ThreatLabz has observed more than five victims that have been compromised by BlackBasta 2.0 since the new version’s release in mid-November 2022. This demonstrates that the threat group is very successful at compromising organizations and the latest version of the ransomware will likely enable them to better evade antivirus and EDRs. Author: AlienVault
Related Tags:
conti
ransomware
T1471
T1102
T1027
T1140
AlienVault OTX
AlienVault
Associated Indicators:
51EB749D6CBD08BAF9D43C2F83ABD9D4D86EB5206F62BA43B768251A98CE9D3E
07117C02A09410F47A326B52C7F17407E63BA5E6FF97277446EFC75B862D2799
350BA7FCA67721C74385FAFF083914ECDD66EF107A765DFB7AC08B38D5C9C0BD
E28188E516DB1BDA9015C30DE59A2E91996B67C2E2B44989A6B0F562577FD757
F550ADB28F966C90FE47605C013587346F074021
9B43A8B4034DEABB35D920053949D79F7D189EB4
08274FBE89BBC3FB5DA9C463B33F707749BC2CFA
5748E201AC18944DD2AE67287944A5EE
bashupload.com