SentinelOne Demo: SentinelOne VS BiBi-Windows Wiper Malware – Detection and Mitigation

In this video demonstration, we delve into the workings of the BiBi-Windows Wiper malware and show how the SentinelOne Singularity XDR Platform safeguards against it. BiBi-Windows Wiper is a destructive, wiper-style, malware associated with pro-Hamas hacker and hacktivist groups. This malware mimics a ransomware attack by renaming affected files with the “BiBi1” extension. However, this wiper malware attack does not involve any encryption keys, ransom notes, or other ransomware-centric artifacts. Instead, the malware overwrites files with data, thus making them non-recoverable. Victims will then find all accessible files, including core OS files and data, overwritten. This malware targets Windows, and is behaviorally similar to its Linux counterpart. A target path can be provided upon execution to limit the data-destruction to said path.

BiBi-Windows Wiper targets all accessible files, while excluding the destruction of .dll, .sys, and .exe files, or files with those extensions.

The SentinelOne Singularity XDR Platform will protect your systems from such destructive attacks by the BiBi-Windows wiper malware.

~Subscribe to our channels:~
Website: https://www.sentinelone.com/
LinkedIn: https://www.linkedin.com/company/sentinelone/
Twitter: https://twitter.com/SentinelOne
Facebook: https://www.facebook.com/SentinelOne
Instagram: https://www.instagram.com/sentinelsec/
Threads: https://www.threads.net/@sentinelsec