Malicious Windows kernel drivers used in BlackCat ransomware attacks
Tags
attack-pattern: Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID c5e99ef2-7ba9-43e5-9f0a-8ec213863143
Fingerprint 871fe95f59e6bc45
Analysis status DONE
Considered CTI value 1
Text language
Published May 22, 2023, midnight
Added to db May 22, 2023, 10:19 p.m.
Last updated Nov. 13, 2024, 6:33 a.m.
Headline Malicious Windows kernel drivers used in BlackCat ransomware attacks
Title Malicious Windows kernel drivers used in BlackCat ransomware attacks
Detected Hints/Tags/Attributes 29/1/5
Source URLs
Redirection Url
Details Source https://www.bleepingcomputer.com/news/security/malicious-windows-kernel-drivers-used-in-blackcat-ransomware-attacks/
URL Provider
Details Provider Source level domain
Details bleepingcomputer.com www.bleepingcomputer.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 279 BleepingComputer https://www.bleepingcomputer.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 1 
'ktgn.sys
Details File 1 
'tjr.exe
Details File 9 
ktgn.sys
Details File 6 
tjr.exe
Details Mandiant Uncategorized Groups 111 
UNC3944