Summary: 2025/05/06 13:11
First reported date: 2020/09/22
Inquiry period : 2025/05/05 13:11 ~ 2025/05/06 13:11 (1 days), 1 search results
지난 7일 기간대비 신규 트렌드를 보이고 있습니다.
악성코드 유형 WannaCry BianLian BlackCat WannaCryptor ShadowPad PlugX Ransomware BlackSuit LockBit RedCurl 도 새롭게 확인됩니다.
공격기술 Campaign 도 새롭게 확인됩니다.
기관 및 기업 Check Point Fortinet Paloalto Taiwan China Microsoft United States 도 새롭게 확인됩니다.
기타 EDR Palo Alto 팔로알토 MimiKatz KillAV 등 신규 키워드도 확인됩니다.
ALPHV, also known as BlackCat or Noberus, is a ransomware family that is deployed as part of Ransomware as a Service (RaaS) operations. ALPHV is written in the Rust programming language and supports execution on Windows, Linux-based operating systems (Debian, Ubuntu, ReadyNAS, Synology), and VMWare ESXi. ALPHV is marketed as ALPHV on cybercrime forums, but is commonly called BlackCat by security researchers due to an icon of a black cat appearing on its leak site. ALPHV has been observed being deployed in ransomware attacks since November 18, 2021.
ALPHV can be configured to encrypt files using either the AES or ChaCha20 algorithms. In order to maximize the amount of ransomed data, ALPHV can delete volume shadow copies, stop processes and services, and stop virtual machines on ESXi servers. ALPHV can self-propagate by using PsExec to remote execute itself on other hosts on the local network. Ref.
* 최근 뉴스기사 Top3:
ㆍ 2025/05/06 Ransomware Tool Matrix Project Updates: May 2025
참고로 동일한 그룹의 악성코드 타입은 WannaCry Sodinokibi Phobos 등 79개 종이 확인됩니다.
Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | WannaCry | 1 | ▲ new |
| 2 | EDR | 1 | ▲ new |
| 3 | BianLian | 1 | ▲ new |
| 4 | Check Point | 1 | ▲ new |
| 5 | BlackCat | 1 | ▲ new |
| 6 | WannaCryptor | 1 | ▲ new |
| 7 | Fortinet | 1 | ▲ new |
| 8 | Palo Alto | 1 | ▲ new |
| 9 | 팔로알토 | 1 | ▲ new |
| 10 | Paloalto | 1 | ▲ new |
| 11 | ShadowPad | 1 | ▲ new |
| 12 | PlugX | 1 | ▲ new |
| 13 | MimiKatz | 1 | ▲ new |
| 14 | KillAV | 1 | ▲ new |
| 15 | Ransomware | 1 | ▲ new |
| 16 | RTM | 1 | ▲ new |
| 17 | BlackSuit | 1 | ▲ new |
| 18 | Zero Trust | 1 | ▲ new |
| 19 | Taiwan | 1 | ▲ new |
| 20 | China | 1 | ▲ new |
| 21 | Microsoft | 1 | ▲ new |
| 22 | Victim | 1 | ▲ new |
| 23 | United States | 1 | ▲ new |
| 24 | Campaign | 1 | ▲ new |
| 25 | Report | 1 | ▲ new |
| 26 | Malware | 1 | ▲ new |
| 27 | LockBit | 1 | ▲ new |
| 28 | Vulnerability | 1 | ▲ new |
| 29 | RedCurl | 1 | ▲ new |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| WannaCry |
|
1 (10%) |
| BianLian |
|
1 (10%) |
| BlackCat |
|
1 (10%) |
| WannaCryptor |
|
1 (10%) |
| ShadowPad |
|
1 (10%) |
Attacker & Actors
The status of the attacker or attack group being issued.
No data.
Technique
This is an attack technique that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| Campaign |
|
1 (100%) |
Country & Company
This is a country or company that is an issue.
| Keyword | Average | Label |
|---|---|---|
| Check Point |
|
1 (14.3%) |
| Fortinet |
|
1 (14.3%) |
| Paloalto |
|
1 (14.3%) |
| Taiwan |
|
1 (14.3%) |
| China |
|
1 (14.3%) |
Malware Family
Top 5
A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.
Threat info
Last 5SNS
(Total : 0)No data.
News
(Total : 1)WannaCry EDR BianLian Check Point BlackCat WannaCryptor Fortinet Paloalto ShadowPad PlugX MimiKatz KillAV Ransomware RTM BlackSuit Zero Trust Taiwan China Microsoft Victim United States Campaign Report Malware LockBit Vulnerability RedCurl
| No | Title | Date |
|---|---|---|
| 1 | Ransomware Tool Matrix Project Updates: May 2025 - Malware.News | 2025.05.06 |
Additional information
| No | Title | Date |
|---|---|---|
| 1 | Signal clone used by Waltz to archive messages suspends services after reported hack - Malware.News | 2025.05.06 |
| 2 | Ransomware Tool Matrix Project Updates: May 2025 - Malware.News | 2025.05.06 |
| 3 | Signal Clone Used by Mike Waltz Pauses Service After Reports It Got Hacked - Security Latest- WIRED | 2025.05.06 |
| 4 | Palantir Sales Forecast Falls Short of Wall Street’s High Hopes - Bloomberg Technology | 2025.05.06 |
| 5 | Modernizing IT Operations with AIOPS: A Comprehensive Guide - Malware.News | 2025.05.06 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | Ransomware Tool Matrix Project Updates: May 2025 - Malware.News | 2025.05.06 |
| 2 | Ransomware Tool Matrix Project Updates: May 2025 - Malware.News | 2025.05.06 |
| 3 | Ransomware Tool Matrix Project Updates: May 2025 - Malware.News | 2025.05.06 |
| 4 | Tracking Adversaries: EvilCorp, the RansomHub affiliate - Malware.News | 2025.04.03 |
| 5 | Tracking Adversaries: EvilCorp, the RansomHub affiliate - Malware.News | 2025.04.03 |
| View only the last 5 | ||