by jeff | Jul 13, 2017 | Analysis, Blog, Jeff, Malware
I came across this write up by boozallen yesterday, and found it had some very interesting thoughts and insight to how and what happened. Click to access telebots-group-and-petya.pdf 1. Four VirusTotal users uploaded the compiled VBS backdoors along with...
by jeff | Jul 5, 2017 | Analysis, Jeff, Malware, Network, News
http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1 Summary The Nyetya attack was a destructive ransomware variant that affected many organizations inside of Ukraine and multinational corporations with operations in Ukraine. In cooperation with...
by jeff | Jul 4, 2017 | Analysis, Jeff, Malware, News
I came across an interesting article today, with regards to the Petya / NotPetya cyber attack from last week. This is a very good write up and analysis of how the organisation M.E.Doc appears to have been compromised and used to spread the malware in a series of...
by jeff | Jun 27, 2017 | Analysis, Malware, News
During the afternoon it emerged that the “PetrWrap/Petya” malware is currently spreading quickly in many places, including Ukraine. Here are the facts that we can contribute to “PetrWrap/Petya”: – Since midday it is no longer possible for the blackmailers to access...
by jeff | Jun 27, 2017 | Malware, News
#petya #petrWrap #notPetya Win32/Diskcoder.Petya.C Ransomware attack. About This gist was built by the community of the researchers and was scribed by Kir and Igor from the QIWI/Vulners. We are grateful for the help of all those who sent us the data, links and...
