Report an incident

Get 24/7 incident response assistance from our global team

Talk to sales

Just fill out the form, and our representative will contact you soon.

Join the Cybercrime Fighters Club

Please review the following rules before submitting your application:

1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.

2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.

Lock like a Pro: How Qakbot Fuels Enterprise Ransomware Campaigns
← Research Hub

Lock like a Pro: How Qakbot Fuels Enterprise Ransomware Campaigns

Group-IB alerted the world to ProLock. Now, it’s exposing the threat actor further.
Download report

The ProLock ransomware chain emerged in March 2020 as the successor of PwndLocker and has already made its mark, targeting enterprise networks with ransom demands of up to $1 million. Their main tool for initial access is Qakbot, a banking Trojan that has been linked to a recent spike in Big Game Hunting operations.

In this white paper, you’ll learn:

The complete tactics, techniques, and procedures (TTPs) of ProLock based on the updated MITRE ATT&CK® matrix

How Qakbot evades detection and achieves persistence in a network

Previously unknown details on post-exploitation tools used in the threat actor’s recent campaigns

Relevant reports

We see the full picture of the evolving cyber threat landscape thanks to unique tools for monitoring the infrastructure used by cybercriminals and data from battlefields:

A Guide to Cyber Threats Targeting the Financial Sector
White Paper
A Guide to Cyber Threats Targeting the Financial Sector
Learn why cyber threats are one of the biggest business risks for the financial...
Learn moreDownload whitepaper
Analysis of Attacks Against Trading and Bank Card System
Threat Research
Analysis of Attacks Against Trading and Bank Card System
Group-IB annual report on speculative fluctuations of exchange rate and other incidents in 2015...
Learn moreView report
The Easy First Step to Starting Your Zero Trust Journey
White Paper
The Easy First Step to Starting Your Zero Trust Journey
Learn how cybersecurity consulting can put you on the path to realizing Zero Trust...
Learn moreDownload whitepaper
The 5 Step Guide to Making Your MDR More Efficient
White Paper
The 5 Step Guide to Making Your MDR More Efficient
Ultimate guide on how to optimize your managed detection and response offering and SOC...
Learn more