darkradiation-container-ransomwarewiper (Campaign)

[email protected] (Wiz Threat Research) 2022-06-21T00:00:00+00:00 View Original

Full Report

On 2022-06-21, a campaign was reported, involving DarkRadiation operator, gaining initial access via Unknown, while using Database ransomware, Disk Wipe, Remotely execute commands or scripts on a VM , Rootkit - LD_PRELOAD, targeting Docker to achieve RansomOp.

Analysis Summary