Annabelle Ransomware Sample and Analysis

Posted Under: EXE on Feb 28, 2018
The developer of this ransomware used the Annabelle doll from the movie franchise of the same name, an american horror film.This ransomware encrypts user data, and then requires a ransom of 0.1 BTC to bring back the files.

NanoCore RAT Sample with Source Code Download

Posted Under: EXE on Feb 24, 2018
NanoCore RAT first appeared in 2013 with its latest version released in 2015. It was freely available to purchase for between $25 to $50. In July, 2017 its creator found guilty.

GandCrab Ransomware Analysis and Samples

Posted Under: EXE on Feb 23, 2018
GandCrab ransomware encrypt user file with GDCB extension and renders them void. It is disseminated via exploits Kits such as RIG EK,GrandSoft EK, EITest campaign (compromised websites), and the Necurs botnet MalSpam campaign. GandCrab is the first ransomware that wants it ransom in DASH Crypto-Currency.

RokRAT Adobe Flash Malware Sample (CVE-2018-4878)

Posted Under: EXE on Feb 20, 2018
RokRAT exploits CVE-2018-4878, a Adobe Falsh 0-day vulnerability. Its is believed to be the work of supposedly North Korean Group 123 or APT37. RokRAT is disseminated via a excel file which has an ActiveX Object, that object is an embedded SWF file.

Olympic Destroyer Analysis and Samples

Posted Under: EXE on Feb 18, 2018
Olympic Destroyer as the name implies is a malware / worm designed for destruction and sabotage the of on going Winter Olympic games in Pyeongchang, South Korea.
© Tutorial Jinni