TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

NetWalker (まとめ)

【図表】

f:id:tanigawa:20200909195201p:plain
NetWalkerの情報公開サイト


【概要】

■被害組織

組織名 発生時期 報道時期 身代金支払額 備考
USCF 2020/06/01 2020/06/03 114万ドル Bitcoin


【最新情報】

◆サイバー脅威スタートアップのCygilantがランサムウェア「NetWalker」に襲われる、身代金は支払い済みか (TechCrunch, 2020/09/05)
https://jp.techcrunch.com/2020/09/05/2020-09-03-cygilant-ransomware/
https://malware-log.hatenablog.com/entry/2020/09/05/000000_1

◆Netwalker ransomware hits Argentinian government, demands $4 million (BleepingComputer, 2020/09/06)
https://www.bleepingcomputer.com/news/security/netwalker-ransomware-hits-argentinian-government-demands-4-million/
https://malware-log.hatenablog.com/entry/2020/09/06/000000_3

◆アルゼンチン移民局がランサムウェア被害 身代金にビットコイン要求 (CoinPost, 2020/09/07 16:50)
https://coinpost.jp/?p=180786
https://malware-log.hatenablog.com/entry/2020/09/07/000000_3

◆Netwalker ransomware hits Pakistan's largest private power utility (BleepingComputer, 2020/09/08)
https://www.bleepingcomputer.com/news/security/netwalker-ransomware-hits-pakistans-largest-private-power-utility/
https://malware-log.hatenablog.com/entry/2020/09/08/000000_4

【ニュース】

◆Illinois public health website shut down in ransomware attack (Becker's Health IT, 2020/03/17)
https://www.beckershospitalreview.com/cybersecurity/illinois-public-health-website-shut-down-in-ransomware-attack.html
https://malware-log.hatenablog.com/entry/2020/03/17/000000_8

◆Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (BleepingComputer, 2020/03/18 18:36)
https://www.bleepingcomputer.com/news/security/ransomware-gangs-to-stop-attacking-health-orgs-during-pandemic/
https://malware-log.hatenablog.com/entry/2020/03/18/000000_8

◆Spanish hospitals targeted with coronavirus-themed phishing lures in Netwalker ransomware attacks (Computing, 2020/03/24)

Groups behind Netwalker switched phishing baits to coronavirus last week - as other ransomware groups pledged to avoid medical facilities
(先週、Netwalkerの背後にいるグループがフィッシング餌をコロナウイルスに切り替えました-他のランサムウェアグループが医療施設を避けることを約束したため)

https://www.computing.co.uk/news/4012969/hospitals-coronavirus-ransomware
https://malware-log.hatenablog.com/entry/2020/03/24/000000_9

◆Here's a list of all the ransomware gangs who will steal and leak your data if you don't pay (ZDNet, 2020/04/21 15:14)
[これは、あなたが支払わない場合は、データを盗み、漏洩させるランサムウェアのギャングのすべてのリストです]

Ransomware gangs are getting more aggressive these days about pursuing payments and have begun stealing and threatening to leak sensitive documents if victims don't pay the requested ransom demand.
[ランサムウェアのギャングは、最近では支払いを追求することに積極的になっており、被害者が要求された身代金の要求を支払わない場合には、機密文書を盗み出したり、脅したりするようになっています]

https://www.zdnet.com/article/heres-a-list-of-all-the-ransomware-gangs-who-will-steal-and-leak-your-data-if-you-dont-pay/
https://malware-log.hatenablog.com/entry/2020/04/21/000000_7

◆Netwalker ransomware continues assault on US colleges, hits UCSF (BleepingComputer, 2020/06/03)
https://www.bleepingcomputer.com/news/security/netwalker-ransomware-continues-assault-on-us-colleges-hits-ucsf/
https://malware-log.hatenablog.com/entry/2020/06/03/000000_4

◆身代金払えない被害者続出、それでも荒稼ぎするランサムウエア攻撃の卑劣さ (日経XTECH, 2020/06/17)
https://xtech.nikkei.com/atcl/nxt/column/18/00676/061000051/
https://malware-log.hatenablog.com/entry/2020/06/17/000000

◆How hackers extorted $1.14m from University of California, San Francisco (BBC, 2020/06/29)
https://www.bbc.com/news/technology-53214783
https://malware-log.hatenablog.com/entry/2020/06/29/000000_3

◆ランサムウェア被害の身代金、1.2億円のビットコイン要求飲む 米UCSF大学 (CoinPost, 2020/06/30)
https://coinpost.jp/?p=163850
https://malware-log.hatenablog.com/entry/2020/06/30/000000_2

◆NetWalker ransomware gang has made $25 million since March 2020 (ZDNet, 2020/08/03)
https://www.zdnet.com/article/netwalker-ransomware-gang-has-made-25-million-since-march-2020/
https://malware-log.hatenablog.com/entry/2020/08/03/000000_4

◆5ヶ月で約26億円を盗み取ったランサムウェア (Gizmode, 2020/08/09 09:00)
https://www.gizmodo.jp/2020/08/netwalker-ransomware.html
https://malware-log.hatenablog.com/entry/2020/08/09/000000_1

◆わずか5カ月で総額27億円をゆすり取ったランサムウェア「NetWalker」の被害が拡大 (Gigazine, 2020/08/13 06:00)
https://gigazine.net/news/20200813-netwalker-ransomware-made-25-million/
https://malware-log.hatenablog.com/entry/2020/08/13/000000_5

◆How Hackers Bled 118 Bitcoins Out of Covid Researchers in U.S. (Bloomberg, 2020/08/19)
https://www.bloomberg.com/news/features/2020-08-19/ucsf-hack-shows-evolving-risks-of-ransomware-in-the-covid-era
https://malware-log.hatenablog.com/entry/2020/08/19/000000_8

◆ランサムウェアの被害を受けた大学とハッカーの間で行われた「身代金交渉」の様子とは? (Gigazine, 2020/08/21 07:00)
https://gigazine.net/news/20200821-ucsf-hacker-negotiation/
https://malware-log.hatenablog.com/entry/2020/08/21/000000_8

◆サイバー脅威スタートアップのCygilantがランサムウェア「NetWalker」に襲われる、身代金は支払い済みか (TechCrunch, 2020/09/05)
https://jp.techcrunch.com/2020/09/05/2020-09-03-cygilant-ransomware/
https://malware-log.hatenablog.com/entry/2020/09/05/000000_1

◆Netwalker ransomware hits Argentinian government, demands $4 million (BleepingComputer, 2020/09/06)
https://www.bleepingcomputer.com/news/security/netwalker-ransomware-hits-argentinian-government-demands-4-million/
https://malware-log.hatenablog.com/entry/2020/09/06/000000_3

◆アルゼンチン移民局がランサムウェア被害 身代金にビットコイン要求 (CoinPost, 2020/09/07 16:50)
https://coinpost.jp/?p=180786
https://malware-log.hatenablog.com/entry/2020/09/07/000000_3

◆Netwalker ransomware hits Pakistan's largest private power utility (BleepingComputer, 2020/09/08)
https://www.bleepingcomputer.com/news/security/netwalker-ransomware-hits-pakistans-largest-private-power-utility/
https://malware-log.hatenablog.com/entry/2020/09/08/000000_4

◆The Week in Ransomware - September 11th 2020 - A barrage of attacks (BleepingComputer, 2020/09/11 17:09)
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-september-11th-2020-a-barrage-of-attacks/
https://malware-log.hatenablog.com/entry/2020/09/11/000000_7

◆Equinix data center giant hit by Netwalker Ransomware, $4.5M ransom (BleepingComputer, 2020/09/10 11:32)
https://www.bleepingcomputer.com/news/security/equinix-data-center-giant-hit-by-netwalker-ransomware-45m-ransom/
https://malware-log.hatenablog.com/entry/2020/09/10/000000_4

◆Hackers leak files stolen in Pakistan's K-Electric ransomware attack (Bleeping Computer, 2020/10/01 10:29)
[パキスタンのK-Electricのランサムウェア攻撃で盗まれたファイルをハッカーがリーク]
https://www.bleepingcomputer.com/news/security/hackers-leak-files-stolen-in-pakistans-k-electric-ransomware-attack/
https://malware-log.hatenablog.com/entry/2020/10/01/000000_10

◆Enel Group hit by ransomware again, Netwalker demands $14 million (BleepingComputer, 2020/10/27)
https://www.bleepingcomputer.com/news/security/enel-group-hit-by-ransomware-again-netwalker-demands-14-million/
https://malware-log.hatenablog.com/entry/2020/10/27/000000_7


【ブログ】

◆Threat Analysis Unit (TAU) Threat Intelligence Notification: MailTo (NetWalker) Ransomware (Carbon Black, 2020/02/07)
https://www.carbonblack.com/2020/02/07/threat-analysis-unit-tau-threat-intelligence-notification-mailto-netwalker-ransomware/
https://malware-log.hatenablog.com/entry/2020/02/07/000000

◆Netwalker Ransomware – From Static Reverse Engineering to Automatic Extraction (Zero2Automarted Blag, 2020/05/19)
https://zero2auto.com/2020/05/19/netwalker-re/
https://malware-log.hatenablog.com/entry/2020/05/19/000000_5

◆Netwalker ransomware tools give insight into threat actor (Sophos, 2020/05/27)
https://news.sophos.com/en-us/2020/05/27/netwalker-ransomware-tools-give-insight-into-threat-actor/
https://malware-log.hatenablog.com/entry/2020/05/27/000000_2


【公開情報】

◆NetWalker ransomware removal instructions (PCRisk, 2020/07/27)
https://www.pcrisk.com/removal-guides/17729-netwalker-ransomware
https://malware-log.hatenablog.com/entry/2020/07/27/000000_2


【脅迫サイト】

  • pb36hu4spl6cyjdfhing7h3pw6dhpk32ifemawkujj4gp33ejzdq3did.onion
  • rnfdsgm6wb6j6su5txkekw4u4y47kp2eatvu7d6xhyn5cs4lt4pdrqqd.onion


【関連まとめ記事】

全体まとめ
 ◆マルウェア / Malware (まとめ)

◆ランサムウェア (まとめ)
https://malware-log.hatenablog.com/entry/Ransomware


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2020