RaaS

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess

Golang, infostealer, Malware, qBit Stealer, RaaS, Ransomware-as-a-Service /

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess 2023-12-28 at 12:47 By cybleinc CRIL investigates the source code of qBit – which has recently appeared on a cybercrime forum – delving into its exfiltration capabilities. The post Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess appeared first on Cyble. This article is an […]

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess Read More »

Malicious Tools in the Underground: Investigating their Propagation

AES, apple, Atomic, Binance, C, Chrome, Chromium, Coinbase, Coinomi, Cryptocurrency, darkweb, DDoS, Delphi, DMG, Exodus, Keplr, Keylogging, Linux, LummaC2 Stealer, MaaS, macOS, Malware, Martian, Meduza, MetaMask, Mozilla, Phantom, PKG, RaaS, RSA, Russian, SaaS, ShadowVault, Telegram, Threat Intelligence, Trigona, Tron Link, Trust, Windows /

Malicious Tools in the Underground: Investigating their Propagation 16/06/2023 at 19:04 By cybleinc Cyble Research & Intelligence Labs investigates the recent promulgation of Malicious Tools in underground forums. The post Malicious Tools in the Underground: Investigating their Propagation appeared first on Cyble. This article is an excerpt from Cyble View Original Source

Malicious Tools in the Underground: Investigating their Propagation Read More »

Evasive NoEscape Ransomware Uses Reflective DLL Injection

8Base Ransomware, ChaCha20, CryptoAPI, cybercrime, ESXi servers, Linux, Linux Variant, Malware, Microsoft Visual C/C++, NoEscape Ransomware, RaaS, Ransomware, SQL, Threat Actors, Twitter, Vmware Converter, Windows 7, Windows XP /

Evasive NoEscape Ransomware Uses Reflective DLL Injection 04/06/2023 at 21:21 By cybleinc Cyble Research and Intelligence Labs analyzes the NoEscape Ransomware-as-a-Service platform and explains how it targets VMware ESXi servers. The post Evasive NoEscape Ransomware Uses Reflective DLL Injection appeared first on Cyble. This article is an excerpt from Cyble View Original Source

Evasive NoEscape Ransomware Uses Reflective DLL Injection Read More »

‘NoEscape’ Ransomware-as-a-Service (RaaS)

C, ChaCha20, CIS, Commonwealth of Independent States, cybercrime, darkweb, data breach, Data leak, Malware, NoEscape, RaaS, Ransomware, Ransomware Affiliate, Russia, Safe Mode, Server Message Block, Threat Intelligence, Triple-Extortion, Windows, Windows NT 10.0 /

‘NoEscape’ Ransomware-as-a-Service (RaaS) 01/06/2023 at 18:32 By cybleinc CRIL analyzes the newly advertised ‘NoEscape’ Ransomware-as-a-Service (RaaS) program that claims to facilitate sophisticated extortion operations using an advanced, indigenously developed ransomware strain. The post ‘NoEscape’ Ransomware-as-a-Service (RaaS) appeared first on Cyble. This article is an excerpt from Cyble View Original Source

‘NoEscape’ Ransomware-as-a-Service (RaaS) Read More »

BlackBit Ransomware: A Threat from the Shadows of LokiLocker

.NET, .NET compiler, .NET Reactor, APT, BlackBit, Chrome, cybercrime, darkweb, Data leak, Defense Evasion, Encryption, Excel, Firefox, firewall, Leak site, LokiLocker, Malware, Microsoft, Microsoft Office, Persistence, RaaS, Ransomware, Ransomware-as-a-Service, Steam, Threat Intelligence, Thunderbird, Visio, Windows, Windows Defender, Wordpad /

BlackBit Ransomware: A Threat from the Shadows of LokiLocker 07/05/2023 at 18:24 By cybleinc CRIL conducts a deep dive analysis into BlackBit, a ransomware variant based on the notorious LokiLocker ransomware. The post BlackBit Ransomware: A Threat from the Shadows of LokiLocker appeared first on Cyble. This article is an excerpt from Cyble View Original

BlackBit Ransomware: A Threat from the Shadows of LokiLocker Read More »

Scroll to Top