Alina ‘sparks’ source code review
I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…
Alina ‘sparks’ source code review
I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…
Alina ‘sparks’ source code review
I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…
Tiberium/Consuella USPS money laundering service
Consuella was a 'USPS drop service' run by one of the Lampeduza administrator.This type of service is used to help credit card thieves to "cash out" by sending carded labels service overseas (or not) via USPS.They was also constantly recruiting mules in United states to keep addresses in rotation.Here is…
Tiberium/Consuella USPS money laundering service
Consuella was a 'USPS drop service' run by one of the Lampeduza administrator.This type of service is used to help credit card thieves to "cash out" by sending carded labels service overseas (or not) via USPS.They was also constantly recruiting mules in United states to keep addresses in rotation.Here is…
Tiberium/Consuella USPS money laundering service
Consuella was a 'USPS drop service' run by one of the Lampeduza administrator.This type of service is used to help credit card thieves to "cash out" by sending carded labels service overseas (or not) via USPS.They was also constantly recruiting mules in United states to keep addresses in rotation.Here is…
Tiberium/Consuella USPS money laundering service
Consuella was a 'USPS drop service' run by one of the Lampeduza administrator.This type of service is used to help credit card thieves to "cash out" by sending carded labels service overseas (or not) via USPS.They was also constantly recruiting mules in United states to keep addresses in rotation.Here is…
Cryptorbit locker
When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732
Cryptorbit locker
When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732
Cryptorbit locker
When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732
Cryptorbit locker
When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732
Captain Barbarossa
Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:
Captain Barbarossa
Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:
Captain Barbarossa
Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:
Captain Barbarossa
Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager: