Rapture

Malware Profile Updated 3 months ago
Download STIX
Preview STIX
Rapture is a prominent malware that has emerged as a significant threat in the cybersecurity landscape. It appears to have adapted and evolved from the Paradise crypto-locker source code, which leaked in mid-2021. Further enhancements were made using the Babuk source code that was leaked later the same year. Rapture's operators are suspected of using a pirated Windows license, which is also being used by several other entities. The malware is primarily spread through suspicious downloads, emails, or websites, often infiltrating systems without users' knowledge. The behavior of Rapture, while sharing certain similarities with Paradise, is distinctively different, indicating a unique attack pattern. Before launching an attack, Rapture's operators perform specific actions likely designed to ensure a more successful infiltration. Once inside the system, Rapture, like other malware, can steal personal information, disrupt operations, or hold data hostage for ransom. This approach is also adopted by other newcomers in the field, including RA Group, Rorschach, and RTM Locker, all of which have integrated elements from the leaked Paradise and Babuk source codes. The emergence and evolution of Rapture underscore the ongoing challenges in cybersecurity. As malware becomes more sophisticated, the need for robust security measures and constant vigilance grows. There are concerns about the implications of an imminent 'Rapture,' as highlighted in Dr. Michael Brown's recent article. As such, individuals and organizations must take proactive steps to protect their systems and data from these evolving threats.
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Babuk
2
Babuk is a type of malware, specifically ransomware, which is designed to infiltrate systems and hold data hostage for ransom. It can be delivered through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside a system, Babuk can disrupt operations and steal perso
Rorschach
2
Rorschach, also known as BabLock, is a malware variant that has been recognized for its speed and sophistication. It is a form of ransomware that encrypts files on infected systems at an unprecedented rate, with Check Point researchers noting it as one of the fastest ransomware variants ever observe
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Locker
Ransom
Windows
Ransomware
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
RTM LockerUnspecified
2
RTM Locker is a recently emerged ransomware that targets enterprise systems, specifically Linux virtual machines on VMware ESXi servers. This malicious software was developed from the leaked source code of the now-defunct Babuk ransomware, which was made public by an alleged member of the Babuk grou
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Rapture Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
New Entrants to Ransomware Unleash Frankenstein Malware
BankInfoSecurity
a year ago
Why Criminals Keep Reusing Leaked Ransomware Builders
CERT-EU
a year ago
Best wireless router deals: Casual Wi-Fi to lag-free gaming | Digital Trends
BankInfoSecurity
a year ago
New Entrants to Ransomware Unleash Frankenstein Malware
CERT-EU
a year ago
Why Criminals Keep Reusing Leaked Ransomware Builders
CERT-EU
a year ago
Quid pro Joe
Trend Micro
a year ago
Rapture, a Ransomware Family With Similarities to Paradise