Security News > 2023 > October > New Hunters International ransomware possible rebrand of Hive

New Hunters International ransomware possible rebrand of Hive
2023-10-29 23:58

A new ransomware-as-a-service brand named Hunters International has emerged using code used by the Hive ransomware operation, leading to the valid assumption that the old gang has resumed activity under a different flag.

Security researchers analyzing a sample of the Hunters International malware discovered a striking resemblance to the code used in Hive ransomware attacks.

More specifically, malware analyst and reverse engineer rivitna, who first spotted the new encryptor, came to the conclusion that Hunters International malware was a sample of Hive ransomware version 6.

In replies to the tweet above, security researcher Will Thomas shares that he found "Some maintained Hive ransomware strings" in the Hunters International code.

Looking closer at the Hunters International sample, the researcher discovered code overlaps and similarities that match more than 60% of the code in Hive ransomware.

The Hunters International group is denying the researchers' "Allegations" saying that they are a new service on the ransomware scene who purchased the encryptor source code from the Hive developers.


News URL

https://www.bleepingcomputer.com/news/security/new-hunters-international-ransomware-possible-rebrand-of-hive/