FortiGuard Labs security researchers have linked a new ransomware strain dubbed Diavol to the Trickbot botnet. Diavol and Conti ransomware payloads were deployed on different systems in a ransomware attack blocked by the company’s EDR solution in early June 2021. Despite all similarities, the researchers couldn’t find a direct link between Diavol ransomware and the TrickBot gang, with some significant differences making high confidence attribution impossible. There are no built-in checks in Diavol malware preventing the payloads from running on Russian targets’ systems as Conti does.
Source: https://www.bleepingcomputer.com/news/security/trickbot-cybercrime-group-linked-to-new-diavol-ransomware/