A deep dive into Phobos ransomware, recently deployed by 8Base group [Monday, November 20, 2023]

A deep dive into Phobos ransomware, recently deployed by 8Base group [Monday, November 20, 2023]
https://www.securitricks.com/content/images/size/w600/format/webp/2023/12/ATTACK-REPORT-LOGO-2.png
Report

A deep dive into Phobos ransomware, recently deployed by 8Base group

Description :
A deep dive into Phobos ransomware, recently deployed by 8Base, has uncovered a number of interesting features, including features that enable the malware to encrypt files and report infections to an external URL.

Published :
2023-11-20T10:31:09.483Z

Created :
2023-11-20T10:31:09.483Z

Modified :
2023-11-20T10:40:27.522Z

Tags

  • ransomware
  • phobos
  • 8base

Indicators

Hashes :
  • 32a674b59c3f9a45efde48368b4de7e0e76c19e06b2f18afb6638d1a080b2eb3
  • a91491f45b851a07f91ba5a200967921bf796d38677786de51a4a8fe5ddeafd2
  • 2704e269fb5cf9a02070a0ea07d82dc9d87f2cb95e60cb71d6c6d38b01869f66
  • 58626a9bfb48cd30acd0d95debcaefd188ae794e1e0072c5bde8adae9bccafa6
  • f3be35f8b8301e39dd3dffc9325553516a085c12dc15494a5e2fce73c77069ed
  • fc4b14250db7f66107820ecc56026e6be3e8e0eb2d428719156cf1c53ae139c6
  • 518544e56e8ccee401ffa1b0a01a10ce23e49ec21ec441c6c7c3951b01c1b19c
Attacks Pattern :
  • T1548
  • T1552
  • T1547
  • T1110
  • T1566
  • T1562
  • T1486
  • T1106
  • T1560
  • T1027
  • T1574
  • T1105
  • T1059
  • T1140
External References :

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! Youโ€™ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.