Community Synonyms
- Sandworm (via SandWorm usage of BE2; iSight Partners)
- Kernelbot (malware.dontneedcoffe)
- Lancafdo (Symantec)
- Blacken (Sophos)
Malware References
- http://www.welivesecurity.com/2016/01/03/blackenergy-sshbeardoor-details-2015-attacks-ukrainian-news-media-electric-industry/
- http://www.welivesecurity.com/2014/09/22/back-in-blackenergy-2014/
- http://www.welivesecurity.com/2014/10/14/cve-2014-4114-details-august-blackenergy-powerpoint-campaigns/
- https://www.virusbtn.com/conference/vb2014/abstracts/LM3-LipovskyCherepanov.xml
- http://atlas-public.ec2.arbor.net/docs/BlackEnergy+DDoS+Bot+Analysis.pdf
- https://securelist.com/blog/research/67353/be2-custom-plugins-router-abuse-and-target-profiles/
- https://securelist.com/analysis/publications/36309/black-ddos/
- https://www.f-secure.com/documents/996508/1030745/blackenergy_whitepaper.pdf
- http://malware.dontneedcoffee.com/2014/06/botnetkernel.html
- http://blog.trendmicro.com/sandworm-and-scada/
- http://www.isightpartners.com/2014/10/cve-2014-4114/
- http://blog.trendmicro.com/trendlabs-security-intelligence/an-analysis-of-windows-zero-day-vulnerability-cve-2014-4114-aka-sandworm/
- https://www.first.org/resources/papers/conf2015/first_2015_-_wilhoit-_kyle_-_malware_in_your_pipes_20150630.pdf
- http://www.cyactive.com/total-blackout-sandworm-team-reuse-blackenergy/
- http://www.critical-intelligence.com/resources/papers/CI-Sandworm-BE2.pdf
- http://www.secureworks.com/assets/pdf-store/articles/Understanding_and_Combating_DDoS_Attacks.pdf
- http://www.symantec.com/connect/blogs/destructive-disakil-malware-linked-ukraine-power-outages-also-used-against-media-organizations
- https://nakedsecurity.sophos.com/2016/01/06/ukraine-power-outages-blamed-on-hackers-and-malware/
No comments:
Post a Comment