Merge pull request #472 from rmkml/master

Add DoppelPaymer Ransomware
This commit is contained in:
Alexandre Dulaunoy 2019-11-06 20:48:33 +01:00 committed by GitHub
commit ea8c1dd764
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -13536,7 +13536,19 @@
}, },
"uuid": "4cea4448-1d3c-111a-40af-011d461260b4", "uuid": "4cea4448-1d3c-111a-40af-011d461260b4",
"value": "Freeme" "value": "Freeme"
},
{
"description": "We have dubbed this new ransomware DoppelPaymer because it shares most of its code with the BitPaymer ransomware operated by INDRIK SPIDER. However, there are a number of differences between DoppelPaymer and BitPaymer, which may signify that one or more members of INDRIK SPIDER have split from the group and forked the source code of both Dridex and BitPaymer to start their own Big Game Hunting ransomware operation.",
"meta": {
"encryption": "AES",
"refs": [
"https://www.crowdstrike.com/blog/doppelpaymer-ransomware-and-dridex-2/",
"https://malpedia.caad.fkie.fraunhofer.de/details/win.doppelpaymer"
]
},
"uuid": "5cea5548-1e3c-222a-3faf-022d461260b5",
"value": "DoppelPaymer"
} }
], ],
"version": 69 "version": 70
} }