NOW YOU SEE IT, NOW YOU DON’T: WIPERS IN THE WILD
Common Information
| Type | Value |
|---|---|
| UUID | 069413ab-a35d-41c5-bdf2-b188b02f2573 |
| Fingerprint | aee87e6e315ebedfadc30d2f1063ee2ffe70d979fe4c457e4dd2a1a762af1575 |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | Nov. 1, 2018, 7:07 a.m. |
| Added to db | April 18, 2024, 10:25 a.m. |
| Last updated | Aug. 31, 2024, 1:08 a.m. |
| Headline | NOW YOU SEE IT, NOW YOU DON’T: WIPERS IN THE WILD |
| Title | NOW YOU SEE IT, NOW YOU DON’T: WIPERS IN THE WILD |
| Detected Hints/Tags/Attributes | 158/3/47 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.virusbulletin.com/uploads/pdf/magazine/2018/VB2018-Naumaan.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 247 | www.virusbulletin.com |
|
| Details | Domain | 1 | baesystems.com |
|
| Details | Domain | 2 | logwiper.sh |
|
| Details | Domain | 2 | logging.sh |
|
| Details | Domain | 216 | www.symantec.com |
|
| Details | Domain | 403 | securelist.com |
|
| Details | Domain | 64 | www.talosintelligence.com |
|
| Details | Domain | 38 | blogs.cisco.com |
|
| Details | Domain | 1 | www.csl.army.mil |
|
| Details | Domain | 15 | media.kasperskycontenthub.com |
|
| Details | Domain | 122 | www.kaspersky.com |
|
| Details | Domain | 184 | www.fireeye.com |
|
| Details | Domain | 28 | securingtomorrow.mcafee.com |
|
| Details | Domain | 103 | www.mcafee.com |
|
| Details | Domain | 8 | baesystemsai.blogspot.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | 1 | saher.naumaan@baesystems.com |
||
| Details | File | 2 | logwiper_fixed.txt |
|
| Details | File | 2 | precursor_to_the_next_stuxnet.pdf |
|
| Details | File | 252 | www.cs |
|
| Details | File | 24 | army.mil |
|
| Details | File | 1 | place%20by%20thomas%20rid.pdf |
|
| Details | File | 1 | server-12-en.pdf |
|
| Details | File | 1 | stonedrill_final.pdf |
|
| Details | File | 4 | apt33-insights-into-iranian-cyber-espionage.html |
|
| Details | File | 1 | july-2011.pdf |
|
| Details | File | 2 | wp-dissecting-operation-troy.pdf |
|
| Details | File | 1 | lazarus-tools.html |
|
| Details | Threat Actor Identifier - APT | 181 | APT33 |
|
| Details | Url | 4 | https://www.symantec.com/content/en/us/enterprise |
|
| Details | Url | 1 | https://securelist.com/what-was-that-wiper- |
|
| Details | Url | 1 | https://www.talosintelligence.com/resources/58. |
|
| Details | Url | 1 | https://blogs.cisco.com/security/talos/wiper-malware. |
|
| Details | Url | 1 | http://www.csl.army.mil/slet/mccd/cyberspacepubs |
|
| Details | Url | 1 | https://securelist.com/full-analysis-of-flames- |
|
| Details | Url | 2 | https://www.symantec.com/content/dam/symantec |
|
| Details | Url | 1 | https://www.symantec.com/connect/blogs/flamer- |
|
| Details | Url | 3 | https://media.kasperskycontenthub.com/wp-content |
|
| Details | Url | 1 | https://www.kaspersky.com/about/press-releases/2017_ |
|
| Details | Url | 1 | https://www.fireeye.com/blog/threat-research/2017/09 |
|
| Details | Url | 1 | https://www.symantec.com/connect/blogs/south- |
|
| Details | Url | 5 | https://www.symantec.com/connect/blogs |
|
| Details | Url | 1 | https://securingtomorrow.mcafee.com/wp-content |
|
| Details | Url | 1 | https://www.mcafee.com/enterprise/en-us/assets |
|
| Details | Url | 1 | http://baesystemsai.blogspot.com/2017/10/taiwan-heist- |
|
| Details | Url | 1 | https://twitter.com/cafrati/status/999758905478733824. |
|
| Details | Url | 1 | https://twitter.com/cafrati/status/999702915567751168. |