| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Throughout 2018, CrowdStrike Intelligence tracked BOSS SPIDER as it regularly updated Samas ransomware and received payments to known Bitcoin (BTC) addresses. This consistent pace of activity came to an abrupt halt at the end of November 2018 when the U.S. DoJ released an indictment for Iran-based individuals Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri, alleged members of the group.
There are currently no families associated with this actor.
| 2020-01-01
⋅
Secureworks
⋅
GOLD LOWELL SamSam BOSS SPIDER |
| 2019-01-01
⋅
CrowdStrike
⋅
2019 CrowdStrike Global Threat Report APT40 BOSS SPIDER FIN6 Flash Kitten GURU SPIDER LUNAR SPIDER NOMAD PANDA PINCHY SPIDER RATPAK SPIDER SALTY SPIDER TINY SPIDER |
| 2019-01-01
⋅
CrowdStrike
⋅
2019 CrowdStrike Global Threat Report BOSS SPIDER Flash Kitten GURU SPIDER LUNAR SPIDER NOMAD PANDA PINCHY SPIDER RATPAK SPIDER SALTY SPIDER TINY SPIDER |
| 2018-02-15
⋅
Secureworks
⋅
SamSam Ransomware Campaigns MimiKatz reGeorg SamSam BOSS SPIDER |
| 2018-02-15
⋅
Secureworks
⋅
SamSam: Converting Opportunity into Profit SamSam BOSS SPIDER |
| 2016-05-03
⋅
Secureworks
⋅
The Continuing Evolution of Samas Ransomware SamSam BOSS SPIDER |
| 2016-03-30
⋅
Secureworks
⋅
Ransomware Deployed by Adversary with Established Foothold MimiKatz reGeorg SamSam BOSS SPIDER |