BOOK AN APPOINTMENT WITH AN IT SPECIALIST TODAY

SCHEDULE A CALL

05 May 2020

Is this a new version of Nefilim Ransomware or something different?

Original release date: May 5, 2020

Summary

A possible new variant or maybe a different tactic now being used by the Nefilim Ransomware

Background

As noted originally by the BleepingComputer the ransomware going by the name of Nefilim came to be around the end of February2020. While these threat actors originally deployed a Tor Payment site for all of there decryption payments and tools, they migrated over to email based communications.

What has changed?

It would seem everything has changed with these guys now. While I am not 100% sure this is the Nefilim Ransomware, it would appear that some indications are looking like it.

ID Ransomware

If this had been identified correctly, and this is in fact Nefilim, then the same we have currently shows a lot of differences.

Let break it down

  1. This treat actor is now using a website called http://corpleaks.net/ to boast their work.
  2. Instead of a Ransomware note, a new desktop image is now left in it’s place
  3. While I am unsure how older versions of the ransomware process worked, currently there is a sync.exe file that is dropped onto the device. This program will scan the workstation and then actually sync the files collected to a remote server.

Conclusion

Further testing needs to be performed in order to confirm this is still Nefilim, a new varient, or a completely different ransomware all together.

As we learn more, we will provide updates.

 

More Like This

A Quintessential Guide to Windows 11 Tips and News

By | Oct 25, 2021
A Quintessential Guide to Windows 11 Tips and News Windows 11 introduces a wide selection of interesting new features capable of transforming the user experience. In addition, the operating system comes with a streamlined design, Android apps integration capabilities, a built-in Microsoft Teams conferencing application, and other notable features. Examples of features that you can …

A Quintessential Guide to Windows 11 Tips and News Read More »

Read More

AA21-291A: BlackMatter Ransomware

By | Oct 18, 2021
Original release date: October 18, 2021 Summary Actions You Can Take Now to Protect Against BlackMatter Ransomware • Implement and enforce backup and restoration policies and procedures. • Use strong, unique passwords. • Use multi-factor authentication. • Implement network segmentation and traversal monitoring. Note: this advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) …

AA21-291A: BlackMatter Ransomware Read More »

Read More

Outages Result of DDoS Attack” Confirms Bandwidth CEO

By | Oct 16, 2021
Outages Result of DDoS Attack” Confirms Bandwidth CEO David Morken, CEO of Bandwidth.com, has confirmed that a DDoS attack was responsible for recent outages reported on the site on September 27th. Citing that “a number of critical communications service providers have been targeted by a rolling DDoS attack” in a recent statement, Morken also apologized …

Outages Result of DDoS Attack” Confirms Bandwidth CEO Read More »

Read More

AA21-287A: Ongoing Cyber Threats to U.S. Water and Wastewater Systems

By | Oct 14, 2021
Original release date: October 14, 2021 Summary Immediate Actions WWS Facilities Can Take Now to Protect Against Malicious Cyber Activity • Do not click on suspicious links. • If you use RDP, secure and monitor it. • Use strong passwords. • Use multi-factor authentication. Note: This Alert uses the MITRE Adversarial Tactics, Techniques, and Common …

AA21-287A: Ongoing Cyber Threats to U.S. Water and Wastewater Systems Read More »

Read More

What You Need To Know About The Facebook Outage

By | Oct 5, 2021
What You Need To Know About The Facebook Outage Facebook and its associated services experienced a six-hour outage on Monday. Facebook, Instagram, WhatsApp, and Oculus suffered a major outage over the course of Monday, Oct. 4. Beginning just before noon EST, the outage lasted six hours, preventing users from accessing their social media profiles, messaging …

What You Need To Know About The Facebook Outage Read More »

Read More

Are You Ready For Windows 11 Official Release on October 5, 2021?

By | Oct 2, 2021
Are You Ready For Windows 11 Official Release on October 5, 2021? As the official release date for the free upgrade to Windows 11 nears, it is time to prepare for the new Windows experience. You can upgrade to the new operating system, depending on the eligibility of your Windows 7 or 10 PC. Microsoft …

Are You Ready For Windows 11 Official Release on October 5, 2021? Read More »

Read More
SCHEDULE A CALL