TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

LockerGoga (まとめ)

【マルウェアDB】

◆Ransom.Win32.LOCKERGOGA.AA (Trendmicro)
https://www.trendmicro.com/vinfo/jp/threat-encyclopedia/malware/ransom.win32.lockergoga.aa


【ニュース】

◆New LockerGoga Ransomware Allegedly Used in Altran Attack (BleepingComputer, 2019/01/30)
https://www.bleepingcomputer.com/news/security/new-lockergoga-ransomware-allegedly-used-in-altran-attack/
http://malware-log.hatenablog.com/entry/2019/01/30/000000_6

◆LockerGoga Ransomware Sends Norsk Hydro Into Manual Mode (BleepingComputer, 2019/03/19 09:48)
https://www.bleepingcomputer.com/news/security/lockergoga-ransomware-sends-norsk-hydro-into-manual-mode/
http://malware-log.hatenablog.com/entry/2019/03/19/000000_11

◆Aluminum producer switches to manual operations after ransomware infection (ZDNet, 2019/03/19 20:14)
https://www.zdnet.com/article/aluminium-producer-switches-to-manual-operations-after-extensive-cyber-attack/
http://malware-log.hatenablog.com/entry/2019/03/19/000000_8

◆Norsk Hydro: Hydro subject to cyber-attack (OSLO BORS, 2019/03/19)
https://newsweb.oslobors.no/message/472389
http://malware-log.hatenablog.com/entry/2019/03/19/000000_7

◆世界最大級のアルミニウム生産企業がランサムウェアの影響で作業を「手動」に切り替える異常事態に (Gigazine, 2019/03/20 14:00)
https://gigazine.net/news/20190320-aluminum-producer-switches-manual-ransomware/
http://malware-log.hatenablog.com/entry/2019/03/20/000000_1

◆The Week in Ransomware - March 22nd 2019 - LOCKERGOGA! (BleepingComputer, 2019/03/22 16:59)
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-march-22nd-2019-lockergoga/
⇒ hhttp://malware-log.hatenablog.com/entry/2019/03/22/000000_4

◆Security Primer – LockerGoga (CIS, 2019/03/28)
https://www.cisecurity.org/white-papers/security-primer-lockergoga/
https://www.cisecurity.org/wp-content/uploads/2019/03/LockerGoga-Security-Primer.pdf
http://malware-log.hatenablog.com/entry/2019/03/28/000000_8

◆ランサムウェア「LockerGoga」、産業・製造業界で被害続出 (ITmedia, 2019/04/02 10:35)
https://www.itmedia.co.jp/enterprise/articles/1904/02/news076.html
http://malware-log.hatenablog.com/entry/2019/04/02/000000_2


【ブログ】

◆Ransomware or Wiper? LockerGoga Straddles the Line (Talos(CISCO), 2019/03/20)
https://blog.talosintelligence.com/2019/03/lockergoga.html
http://malware-log.hatenablog.com/entry/2019/03/20/000000_8

◆Norsk Hydroで発生したRansomware被害についてまとめてみた (piyolog, 2019/03/20)
https://piyolog.hatenadiary.jp/entry/2019/03/20/063800
http://malware-log.hatenablog.com/entry/2019/03/20/000000_9

◆Born This Way? LockerGogaの起源 (Paloalto, 2019/03/27 12:00)
https://www.paloaltonetworks.jp/company/in-the-news/2019/born-this-way-origins-of-lockergoga
http://malware-log.hatenablog.com/entry/2019/03/27/000000_5

◆LockerGoga:ランサムウェアを装ったワイパー型マルウェア (Talos(CISCO), 2019/03/28)
https://gblogs.cisco.com/jp/2019/03/talos-lockergoga/
http://malware-log.hatenablog.com/entry/2019/03/28/000000_9

◆暗号化型ランサムウェア「LockerGoga」について解説 (Trendmicro, 2019/04/08)
https://blog.trendmicro.co.jp/archives/20840
http://malware-log.hatenablog.com/entry/2019/04/08/000000_3


【インディケータ情報】

■ハッシュ情報(CISCO)

c97d9bbc80b573bdeeda3812f4d00e5183493dd0d5805e2508728f65977dda15
88d149f3e47dc337695d76da52b25660e3a454768af0d7e59c913995af496a0f
eda26a1cd80aac1c42cdbba9af813d9c4bc81f6052080bc33435d1e076e75aa0
ba15c27f26265f4b063b65654e9d7c248d0d651919fafb68cb4765d1e057f93f
7bcd69b3085126f7e97406889f78ab74e87230c11812b79406d723a80c08dd26
C3d334cb7f6007c9ebee1a68c4f3f72eac9b3c102461d39f2a0a4b32a053843a


■身代金メッセージ送信元の電子メール アドレス

MayarChenot@protonmail[.]com
DharmaParrack@protonmail[.]com
SayanWalsworth96@protonmail[.]com
DharmaParrack@protonmail[.]com
wyattpettigrew8922555@mail[.]com
SuzuMcpherson@protonmail[.]com
QicifomuEjijika@o2[.]pl
AsuxidOruraep1999@o2[.]pl
RezawyreEdipi1998@o2[.]pl
AbbsChevis@protonmail[.]com
IjuqodiSunovib98@o2[.]pl
RezawyreEdipi1998@o2[.]pl


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2019