Malpedia Library

2021-12-14 ⋅ Cado Security ⋅ Matt Muir
Analysis of Novel Khonsari Ransomware Deployed by the Log4Shell Vulnerability
Khonsari

2021-12-14 ⋅ Prevailion ⋅ Matt Stafford, Sherman Smith
DarkWatchman: A new evolution in fileless techniques
DarkWatchman

2021-12-10 ⋅ Medium s2wlab ⋅ S2W TALON
BlackCat: New Rust based ransomware borrowing BlackMatter’s configuration
BlackCat BlackMatter

2021-11-20 ⋅ Twitter (@eduardfir) ⋅ Eduardo Mattos
Tweet on Velociraptor artifact analysis for Emotet
Emotet

2021-11-19 ⋅ Twitter (@knight0x07) ⋅ neeraj
Tweet on Exmatter, custom data exfiltration tool, used by Blackmatter ransomware group
ExMatter

2021-11-18 ⋅ Cisco ⋅ Josh Pyorre
BlackMatter, LockBit, and THOR
BlackMatter LockBit PlugX

2021-11-16 ⋅ ESET Research ⋅ Matthieu Faou
Strategic web compromises in the Middle East with a pinch of Candiru
Caramel Tsunami Karkadann

2021-11-11 ⋅ scylla ⋅ Cynthia Dunlop
Stopping Cybersecurity Threats: Why Databases Matter

2021-11-03 ⋅ Group-IB ⋅ Andrey Zhdanov
The Darker Things BlackMatter and their victims
BlackMatter DarkSide BlackMatter DarkSide

2021-11-03 ⋅ Bleeping Computer ⋅ Lawrence Abrams
BlackMatter ransomware moves victims to LockBit after shutdown
BlackMatter BlackMatter LockBit

2021-11-03 ⋅ The Record ⋅ Catalin Cimpanu
BlackMatter ransomware says its shutting down due to pressure from local authorities
BlackMatter

2021-11-02 ⋅ Varonis ⋅ Dvir Sason
BlackMatter Ransomware: In-Depth Analysis & Recommendations
BlackMatter

2021-11-01 ⋅ Symantec ⋅ Threat Hunter Team
BlackMatter: New Data Exfiltration Tool Used in Attacks
ExMatter

2021-10-22 ⋅ Twitter (@GelosSnake) ⋅ Omri Segev Moyal
Tweet on List of wallets used by Darkside/Blackmatter Operator to split out the money
BlackMatter DarkSide BlackMatter DarkSide

2021-10-20 ⋅ Mandiant ⋅ Jacob Thompson
Hidden in Plain Sight: Identifying Cryptography in BLACKMATTER Ransomware
BlackMatter

2021-10-19 ⋅ Proofpoint ⋅ Axel F, Brandon Murphy, Crista Giering, Georgi Mladenov, Matthew Mesa, Zydeca Cass
Whatta TA: TA505 Ramps Up Activity, Delivers New FlawedGrace Variant
FlawedGrace MirrorBlast

2021-10-18 ⋅ CISA ⋅ US-CERT
Alert (AA21-291A): BlackMatter Ransomware
BlackMatter BlackMatter

2021-09-23 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BlackMatter RaaS - Darker Than DarkSide?
BlackMatter DarkSide BlackMatter DarkSide

2021-09-23 ⋅ ESET Research ⋅ Matthieu Faou, Tahseen Bin Taj
FamousSparrow: A suspicious hotel guest
SparrowDoor

2021-09-22 ⋅ McAfee ⋅ Alexandre Mundo, Marc Elias
BlackMatter Ransomware Analysis; The Dark Side Returns
BlackMatter