The Big Bang  (Back to overview)

While it is not clear exactly what the attacker is looking for, what is clear is that once he finds it, a second stage of the attack awaits, fetching additional modules and/or malware from the Command and Control server. This then is a surveillance attack in progress and has been dubbed ‘Big Bang’ due to the attacker’s fondness for the ‘Big Bang Theory’ TV show, after which some of the malware’s modules are named.

Associated Families

There are currently no families associated with this actor.

2018-07-08Check Point ResearchCheck Point Research
@online{research:20180708:attack:bc66648, author = {Check Point Research}, title = {{APT Attack In the Middle East: The Big Bang}}, date = {2018-07-08}, organization = {Check Point Research}, url = {}, language = {English}, urldate = {2020-01-08} } APT Attack In the Middle East: The Big Bang
Micropsia The Big Bang
2017-06-19Cisco TalosPaul Rascagnères, Warren Mercer, Emmanuel Tacheau, Vanja Svajcer, Martin Lee
@online{rascagnres:20170619:delphi:97e7482, author = {Paul Rascagnères and Warren Mercer and Emmanuel Tacheau and Vanja Svajcer and Martin Lee}, title = {{Delphi Used To Score Against Palestine}}, date = {2017-06-19}, organization = {Cisco Talos}, url = {}, language = {English}, urldate = {2020-01-06} } Delphi Used To Score Against Palestine
The Big Bang

Credits: MISP Project