Detect and respond to BlackSuit ransomware with Wazuh
...ransomware executable detection" author = "Aishat Motunrayo Awujola" reference = "https://github.com/Neo23x0/yarGen" date = "2024-10-03" hash1= "90ae0c693f6ffd6dc5bb2d5a5ef078629c3d77f874b2d2ebd9e109d8ca049f2c" strings: $x1 = "C:\\Users\\pipi-\\source\\repos\\encryptor\\Release\\encryptor.pdb" fullword ascii $s2 = "api-ms-win-core-synch-l1-2-0.dll" fullword wide /* reversed goodware...