Jump to content

Ransomware Lockbit 3.0, Can ESET detection this ransomware ?


Recommended Posts

Hello everyone,

on my region this variant ransomware is popular right now, this variant can infected multiple platform and this is very dangerous, because, I'm a worried about this type of ransomware threat, i know ESET abble to detection one of variant based on virus total.
https://www.virustotal.com/gui/file/4800a67ceff340d2ab4f79406a01f58e5a97d589b29b35394b2a82a299b19745
But this one of variant lockbit 3.0 ? i dont know. 

is there any information related to ESET being able to detect variant Lockbit 3.0 such as information on the detection engine version and dates lauch or articles related to ESET having detected this variant.

this data can use me and my team to push work hard to try defend more agresive on another scope, if ESET can detect this variant at long ago,
I hope this article can also help others who need this information. 

thank you, 

Link to comment
Share on other sites

  • Administrators

It is impossible for any security vendor to guarantee that any future versions of particular malware will be 100% detected. ESET has detected various variants of the LockBit ransomware since 2018 when it appeared for the first time.

Link to comment
Share on other sites

I know marcos, none 100% security vendor to abble guarantee detection and totally full protected of all possible objects, but this information can help anyone ESET user, to inform that the product they use can detect and protect against this type of ransomware, and try to see other aspects that are lacking to ward off this attack.

thank you @Marcos

Link to comment
Share on other sites

Posted (edited)

FYI - latest Lockbit version is named "Green" which is targeting;

Quote

underground researchers noticed that the LockBit gang has modified their VMware ESXI ransomware variant. It is an enterprise-class, type-1 hypervisor developed by VMware for deploying and serving virtual machines.

https://cybernews.com/security/lockbit-ransomware-gang-releases-lockbit-green-version/

Also of note is;

Quote

The behavior of the LockBit administrators was obviously unacceptable to the developer, who decided to leak the source code of LockBit 3.0.

Which accounts for almost all security products being able to detect it.

Edited by itman
Link to comment
Share on other sites

  • Administrators

27b8ee04d9d59da8e07203c0ab1fc671215fb14edb35cb2e3122c1c0df83bff8 - a variant of Win32/Filecoder.Lockbit.P trojan
45c317200e27e5c5692c59d06768ca2e7eeb446d6d495084f414d0f261f75315 - a variant of Win32/Filecoder.Lockbit.Q trojan
b3ea0f4f442da3106c0d4f97cf20e244b84d719232ca90b3b7fc6e59e37e1ca1 - a variant of Win64/Filecoder.Lockbit.A trojan
fb49b940570cfd241dea27ae768ac420e863d9f26c5d64f0d10aea4dd0bf0ce3 - a variant of Win64/GenKryptik.FSFZ trojan

 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...