Nuclear

NEK - Nuclear Pack - Spartan - Neclu - Status: Retired - Last seen: 2015-04-30

References:

Inside Nuclear’s Core: Unraveling a Ransomware-as-a-Service Infrastructure - 2016-05-17 - Checkpoint - Check Point Research Nuclear Locky

More Reading:

Another look at Niteris : post exploitation WMI and Fiddler checks - 2015-05-12 - MDNC - Kafeine Niteris Nuclear CVE-2014-0569 CVE-2014-6332

Inside Jahoo (Otlard.A ?) - A spam Botnet - 2015-11-28 - MDNC - Kafeine Otlard VirtualDonna Angler Nuclear ProxyBack Ramnit

Killing a Zero-Day in the Egg: Adobe CVE-2016-1019 - 2016-04-07 - Proofpoint - Kafeine CVE-2016-1019 Nuclear Magnitude

CVE-2016-1019: A New Flash Exploit Included in Magnitude Exploit Kit - 2016-04-07 - FireEye - Genwei Jiang CVE-2016-3298 Nuclear

CVE-2016-1019 (Flash up to 21.0.0.182/187) and Exploit Kits - 2016-04-08 - MDNC - Kafeine CVE-2016-1019 Nuclear Magnitude Cerber Neutrino

Is it the End of Angler ? - 2016-06-11 - MDNC - Kafeine Angler Lurk Nuclear SadClowns GooNky EITest WordsJS ScriptJS

RIG evolves, Neutrino waves goodbye, Empire Pack appears - 2016-10-22 - MDNC - Kafeine RIG Empire Neutrino Angler Nuclear Sutra BlackHole

Threat Actor Profile: KovCoreG, The Kovter Saga - 2017-11-01 - Proofpoint - Kafeine Kovter KovCoreG Angler Sweet Orange Nuclear Sakura BlackHole Neutrino Fiesta Styx EITest