Ransomfeed

Profilo, status e statistiche (dal 12-01-2020)

Dettaglio cyber gang
blackbyte

Profilo gang by OSINT sources: [source: 0]

Ransomware. Uses dropper written in JavaScript to deploy a .NET payload.

Alerts:


Statistiche
N. rivendicazioni 2024 2023 2022
97 3 41 53
URLs
Fonte onionUltimo titoloStatusUltimo scrapeVersione Tor
6iaj3efye3q62xjgfxyegrufhewxew7yt4scxjd45tlfafyja6q4ctqd.onion 🔴 01-05-2021 3
f5uzduboq4fa2xkjloprmctk7ve3dm46ff7aniis66cbekakvksxgeqd.onion BlackByte BLOG 🔴 30-12-2021 3
dlyo7r3n4qy5fzv4645nddjwarj7wjdd6wzckomcyc7akskkxp4glcad.onion BlackByte BLOG 🔴 28-03-2022 3
fl3xpz5bmgzxy4fmebhgsbycgnz24uosp3u4g33oiln627qq3gyw37ad.onion BlackByte BLOG 🔴 24-04-2022 3
ce6roic2ykdjunyzazsxmjpz5wsar4pflpoqzntyww5c2eskcp7dq4yd.onion BlackByte BLOG 🔴 12-07-2022 3
jbeg2dct2zhku6c2vwnpxtm2psnjo2xnqvvpoiiwr5hxnc6wrp3uhnad.onion BB Auction 🔴 20-10-2023 3
53d5skw4ypzku4bfq2tk2mr3xh5yqrzss25sooiubmjz67lb3gdivcad.onion BB Auction 🟢 26-07-2024 3
tj3ty2q5jm5au3bmd2embtjscd3qjt7nfio2o7cr6moyy5kgil5pieqd.onion 504 Gateway Time-out 🟢 26-07-2024 3
Materiale utile
URL ricerca source: 0
https://blog.cluster25.duskrise.com/2023/05/22/back-in-black-blackbyte-nt
https://blog.talosintelligence.com/2022/05/the-blackbyte-ransomware-group-is.html
https://de.darktrace.com/blog/detecting-the-unknown-revealing-uncategorised-ransomware-using-darktrace
https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2022/06/23093553/Common-TTPs-of-the-modern-ransomware_low-res.pdf
https://news.sophos.com/en-us/2022/10/04/blackbyte-ransomware-returns/
https://redcanary.com/blog/blackbyte-ransomware/
https://research.nccgroup.com/2022/07/13/climbing-mount-everest-black-byte-bytes-back/
https://securelist.com/modern-ransomware-groups-ttps/106824/
https://therecord.media/san-francisco-49ers-confirm-ransomware-attack/
https://twitter.com/splinter_code/status/1628057204954652674
https://www.advintel.io/post/discontinued-the-end-of-conti-s-brand-marks-new-chapter-for-cybercrime-landscape
https://www.advintel.io/post/enter-karakurt-data-extortion-arm-of-prolific-ransomware-group
https://www.advintel.io/post/hydra-with-three-heads-blackbyte-the-future-of-ransomware-subsidiary-groups
https://www.bleepingcomputer.com/news/security/fbi-blackbyte-ransomware-breached-us-critical-infrastructure/
https://www.bleepingcomputer.com/news/security/microsoft-exchange-servers-hacked-to-deploy-hive-ransomware/
https://www.deepinstinct.com/blog/understanding-the-windows-javascript-threat-landscape
https://www.ic3.gov/Media/News/2022/220211.pdf
https://www.picussecurity.com/resource/ttps-used-by-blackbyte-ransomware-targeting-critical-infrastructure
https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/trellix-global-defenders-analysis-and-protections-for-blackbyte-ransomware.html
https://www.trendmicro.com/vinfo/my/security/news/ransomware-spotlight/ransomware-spotlight-blackbyte
https://www.zscaler.com/blogs/security-research/analysis-blackbyte-ransomwares-go-based-variants
Note di riscatto

Questo script colleziona ogni rivendicazione criminale esattamente come esposta dalle fonti (modello "As Is"), in un database SQL per creare un feed permanente, che può anche essere seguito con tecnologia RSS.
Il motore è basato sul progetto ransomFeed, fork in GitHub.

© ransomfeed.it 2024 | share with |