References Malware

Dridex

References:
  • Talking to Dridex (part 0) – inside the dropper - 2015-11-10 - CertPL - Maciej Kotowicz Dridex
  • Dridex: A History of Evolution - 2017-05-25 - Securelist - Nikita Slepogin Dridex Shifu
  • Russian National Charged with Decade-Long Series of Hacking and Bank Fraud Offenses Resulting in Tens of Millions in Losses and Second Russian National Charged with Involvement in Deployment of “Bugat” Malware - 2019-12-05 - Department of Justice - DoJ Dridex

    • More Reading:

  • Phish Scales: Malicious Actor Combines Personalized Email, Variety of Malware To Target Execs - 2016-04-05 - Proofpoint - Matthew Mesa TA530 Gozi ISFB TinyLoader Nymaim Dridex Smokebot RecoLoad
  • CryptXXX: New Ransomware From the Actors Behind Reveton, Dropping Via Angler - 2016-04-18 - Proofpoint - Kafeine CryptXXX Angler Dridex
  • Ostap Bender: 400 Ways to Make the Population Part With Their Money - 2016-12-08 - Proofpoint - Proofpoint Staff Ostap Dridex Gozi ISFB TinyLoader
  • The Rise of Dridex and the Role of ESPs - 2017-02-20 10 - GovCERT.ch - GovCERT.ch Sagrid Dridex
  • Dridex Campaigns Hitting Millions of Recipients Using Unpatched Microsoft Zero-Day - 2017-04-10 - Proofpoint - Proofpoint Staff CVE-2017-0199 Dridex TA505
  • Threat Actor Profile: TA505, From Dridex to GlobeImposter - 2017-09-27 - Proofpoint - Proofpoint Staff TA505 Dridex Trickbot Shifu
  • Big Game Hunting: The Evolution of INDRIK SPIDER From Dridex Wire Fraud to BitPaymer Targeted Ransomware - 2018-11-14 - CrowdStrike - Sergei Frankoff - Bex Hartley INDRIK SPIDER BitPaymer Dridex
  • Welcome Spelevo: New exploit kit full of old tricks - 2019-06-27 - Talos - Nick Biasini - Caitlyn Hammond Keitaro Spelevo IcedID Dridex
  • BitPaymer Source Code Fork: Meet DoppelPaymer Ransomware and Dridex 2.0 - 2019-07-12 - CrowdStrike - Brett Stone-Gross - Sergei Frankoff - Bex Hartley DoppelPaymer BitPaymer Dridex INDRIK SPIDER
  • Meet the World’s Biggest ‘Bulletproof’ Hoster - 2019-07-16 - Krebs On Security - Brian Krebs Dridex
  • Head Fake: Tackling Disruptive Ransomware Attacks - 2019-10-01 - FireEye - Bryce Abdo - Brandan Schondorfer - Kareem Hamdan - Kimberly Goody - Noah Klapprodt - Matt Bromiley BitPaymer SocGholish Dridex Chthonic AZORult
  • Spanish consultancy Everis suffers BitPaymer ransomware attack: a brief analysis - 2019-11-06 - Blueliv - Blueliv Labs team - Jose Miguel Esparza Dridex SocGholish Empire
  • Note:TA505 != Dridex. They were massively spreading it, [...] but also Locky 3, Trickbot mac1 - 2019-12-05 - Twitter - Kafeine TA505 Dridex