Login
From:
The DFIR Report
(Uncensored)
subscribe
Fake Zoom Ends in BlackSuit Ransomware – The DFIR Report
https://thedfirreport.com/2025/03/31/fake-zoom-ends-in-blacksuit-ransomware/
links
backlinks
Tagged with:
ransomware
cobaltstrike
blacksuit
bruteratel
sectoprat
Roast topics
Find topics
Find it!
Key Takeaways The threat actor gained initial access by a fake Zoom installer that used d3f@ckloader and IDAT loader to drop SectopRAT. After nine days of dwell time, the SectopRAT malware dropped …
