Members of the Conti ransomware group appear to have splintered into multiple threat groups including BlackBasta, which has become one of the most significant ransomware threats. ThreatLabz has observed more than five victims that have been compromised by BlackBasta 2.0 since the new version’s release in mid-November 2022. This demonstrates that the threat group is very successful at compromising organizations and the latest version of the ransomware will likely enable them to better evade antivirus and EDRs. Author: AlienVault
Related Tags:
conti
ransomware
T1471
T1102
T1027
T1140
AlienVault OTX
AlienVault
Associated Indicators:
07117C02A09410F47A326B52C7F17407E63BA5E6FF97277446EFC75B862D2799
350BA7FCA67721C74385FAFF083914ECDD66EF107A765DFB7AC08B38D5C9C0BD
E28188E516DB1BDA9015C30DE59A2E91996B67C2E2B44989A6B0F562577FD757
C4C8BE0C939E4C24E11BAD90549E3951B7969E78056D819425CA53E87AF8D8ED
F550ADB28F966C90FE47605C013587346F074021
9B43A8B4034DEABB35D920053949D79F7D189EB4
08274FBE89BBC3FB5DA9C463B33F707749BC2CFA
bashupload.com
temp.sh