LevelBlue + SentinelOne Partner to Deliver AI-Powered Managed Security Operations and Incident Response. Learn More

28 Minute Watch Or Golov,
VP Security Innovation, LevelBlue SpiderLabs

LockBit is a well-known name in ransomware threat group circles, an adversary that regularly reinvents itself to maintain effectiveness and increase its targeting capabilities. The group remains highly active, introducing new capabilities designed to improve speed, stealth, and effectiveness across enterprise environments.

In this webinar, LevelBlue SpiderLabs researchers present a deep technical analysis of LockBit 5.0, based on an in-depth study of 19 ransomware samples targeting Windows, Linux (LINUX Locker v1.06 / v1.08), and VMware ESXi (LINUX ESXi Locker v1.07).

It examines how the ransomware operates across platforms, how it encrypts data, evades analysis, and interacts with compromised systems, while highlighting the emerging tradecraft defenders should be watching for.

You'll learn about:  

  • Key technical changes introduced in LockBit 5.0 
  • Details on LockBit’s advanced anti-analysis and operational features 
  • Detection and hunting considerations based on observed behavior

Watch the Webinar

Related Resources

Current: resourceswebinarslockbit-5.0-faster-quieter-harder-to-stop
Resource: resourceswebinarsai-alignment-and-risk-insights-from-levelblues-cto-research
Webinar

AI, Alignment, and Risk: Insights from LevelBlue's CTO Research

Current: resourceswebinarslockbit-5.0-faster-quieter-harder-to-stop
Resource: resourceswebinarsmulti-hop-phishing-kits-clouds-and-chained-attacks
Webinar

Multi-Hop Phishing: Kits, Clouds, and Chained Attacks

Current: resourceswebinarslockbit-5.0-faster-quieter-harder-to-stop
Resource: resourceswebinarslevelblue-ttp-briefing-q1-2026-trust-abuse-exposes-weaknesses
Webinar

LevelBlue TTP Briefing Q1 2026: Trust Abuse Exposes Weaknesses