SYMBOL | COMMON_NAME | aka. SYNONYMS |
Actor(s): TeleBots, Sandworm
According to proofpoint, Bad Rabbit is a strain of ransomware that first appeared in 2017 and is a suspected variant of Petya. Like other strains of ransomware, Bad Rabbit virus infections lock up victims’ computers, servers, or files preventing them from regaining access until a ransom—usually in Bitcoin—is paid.
2023-01-29 ⋅ Acronis ⋅ Petya/Not Petya Ransomware Analysis EternalPetya |
2022-11-18 ⋅ Atlantic Council ⋅ GRU 26165: The Russian cyber unit that hacks targets on-site EternalPetya |
2022-10-31 ⋅ The Record ⋅ Mondelez and Zurich reach settlement in NotPetya cyberattack insurance suit EternalPetya |
2022-10-24 ⋅ Youtube (Virus Bulletin) ⋅ Russian wipers in the cyberwar against Ukraine AcidRain CaddyWiper DesertBlade DoubleZero EternalPetya HermeticWiper HermeticWizard INDUSTROYER2 IsaacWiper KillDisk PartyTicket WhisperGate |
2022-04-28 ⋅ Fortinet ⋅ An Overview of the Increasing Wiper Malware Threat AcidRain CaddyWiper DistTrack DoubleZero EternalPetya HermeticWiper IsaacWiper Olympic Destroyer Ordinypt WhisperGate ZeroCleare |
2022-04-20 ⋅ CISA ⋅ AA22-110A Joint CSA: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure VPNFilter BlackEnergy DanaBot DoppelDridex Emotet EternalPetya GoldMax Industroyer Sality SmokeLoader TrickBot Triton Zloader |
2022-04-20 ⋅ CISA ⋅ Alert (AA22-110A): Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure VPNFilter BlackEnergy DanaBot DoppelDridex Emotet EternalPetya GoldMax Industroyer Sality SmokeLoader TrickBot Triton Zloader Killnet |
2022-03-01 ⋅ Marco Ramilli's Blog ⋅ DiskKill/HermeticWiper and NotPetya (Dis)similarities EternalPetya HermeticWiper |
2022-02-25 ⋅ UKRAINE: Timeline of Cyberattacks VPNFilter EternalPetya HermeticWiper WhisperGate |
2022-02-24 ⋅ nviso ⋅ Threat Update – Ukraine & Russia conflict EternalPetya GreyEnergy HermeticWiper Industroyer KillDisk WhisperGate |
2022-02-24 ⋅ Talos ⋅ Threat Advisory: Current executive guidance for ongoing cyberattacks in Ukraine VPNFilter EternalPetya |
2022-02-24 ⋅ Tesorion ⋅ Report OSINT: Russia/ Ukraine Conflict Cyberaspect Mirai VPNFilter BlackEnergy EternalPetya HermeticWiper Industroyer WhisperGate |
2022-02-23 ⋅ ISTARI ⋅ Re-cap: The Untold Story of NotPetya, The Most Devastating Cyberattack in History EternalPetya |
2021-09-09 ⋅ Recorded Future ⋅ Dark Covenant: Connections Between the Russian State and Criminal Actors BlackEnergy EternalPetya Gameover P2P Zeus |
2021-05-31 ⋅ Wired ⋅ Hacker Lexicon: What Is a Supply Chain Attack? EternalPetya SUNBURST |
2021-04-29 ⋅ The Institute for Security and Technology ⋅ Combating Ransomware A Comprehensive Framework for Action: Key Recommendations from the Ransomware Task Force Conti EternalPetya |
2020-12-21 ⋅ IronNet ⋅ Russian cyber attack campaigns and actors WellMail elf.wellmess Agent.BTZ BlackEnergy EternalPetya Havex RAT Industroyer Ryuk Triton WellMess |
2020-11-04 ⋅ Stranded on Pylos Blog ⋅ The Enigmatic Energetic Bear EternalPetya Havex RAT |
2020-10-19 ⋅ CyberScoop ⋅ US charges Russian GRU officers for NotPetya, other major hacks EternalPetya |
2020-10-19 ⋅ Riskint Blog ⋅ Revisited: Fancy Bear's New Faces...and Sandworms' too BlackEnergy EternalPetya Industroyer Olympic Destroyer |
2020-10-19 ⋅ UK Government ⋅ UK exposes series of Russian cyber attacks against Olympic and Paralympic Games VPNFilter BlackEnergy EternalPetya Industroyer |
2020-10-19 ⋅ Wired ⋅ US Indicts Sandworm, Russia's Most Destructive Cyberwar Unit EternalPetya Olympic Destroyer |
2020-08-29 ⋅ Aguinet ⋅ Emulating NotPetya bootloader with Miasm EternalPetya |
2020-07-29 ⋅ Atlantic Council ⋅ BREAKING TRUST: Shades of Crisis Across an Insecure Software Supply Chain EternalPetya GoldenSpy Kwampirs Stuxnet |
2020-07-29 ⋅ Kaspersky Labs ⋅ APT trends report Q2 2020 PhantomLance Dacls Penquin Turla elf.wellmess AppleJeus Dacls AcidBox Cobalt Strike Dacls EternalPetya Godlike12 Olympic Destroyer PlugX shadowhammer ShadowPad Sinowal VHD Ransomware Volgmer WellMess X-Agent XTunnel |
2020-06-21 ⋅ GVNSHTN ⋅ Maersk, me & notPetya EternalPetya |
2020-06-09 ⋅ Kaspersky Labs ⋅ Looking at Big Threats Using Code Similarity. Part 1 Penquin Turla CCleaner Backdoor EternalPetya Regin WannaCryptor XTunnel |
2020-03-05 ⋅ Microsoft ⋅ Human-operated ransomware attacks: A preventable disaster Dharma DoppelPaymer Dridex EternalPetya Gandcrab Hermes LockerGoga MegaCortex MimiKatz REvil RobinHood Ryuk SamSam TrickBot WannaCryptor PARINACOTA |
2020 ⋅ Secureworks ⋅ IRON VIKING BlackEnergy EternalPetya GreyEnergy Industroyer KillDisk TeleBot TeleDoor |
2019-08-01 ⋅ Kaspersky Labs ⋅ APT trends report Q2 2019 ZooPark magecart POWERSTATS Chaperone COMpfun EternalPetya FinFisher RAT HawkEye Keylogger HOPLIGHT Microcin NjRAT Olympic Destroyer PLEAD RokRAT Triton Zebrocy |
2018-10-11 ⋅ ESET Research ⋅ New TeleBots backdoor: First evidence linking Industroyer to NotPetya Exaramel EternalPetya Exaramel Industroyer |
2018-08-22 ⋅ Wired ⋅ The Untold Story of NotPetya, the Most Devastating Cyberattack in History EternalPetya |
2018-01-13 ⋅ The Washington Post ⋅ Russian military was behind ‘NotPetya’ cyberattack in Ukraine, CIA concludes EternalPetya |
2017-10-27 ⋅ F-Secure ⋅ The big difference with Bad Rabbit EternalPetya |
2017-10-26 ⋅ FireEye ⋅ BACKSWING - Pulling a BADRABBIT Out of a Hat EternalPetya |
2017-10-26 ⋅ Reversing Labs ⋅ ReversingLabs' YARA rule detects BadRabbit encryption routine specifics EternalPetya |
2017-10-25 ⋅ RiskIQ ⋅ Down the Rabbit Hole: Tracking the BadRabbit Ransomware to a Long Ongoing Campaign of Target Selection EternalPetya |
2017-10-24 ⋅ Intezer ⋅ NotPetya Returns as Bad Rabbit EternalPetya |
2017-10-24 ⋅ ESET Research ⋅ Kiev metro hit with a new variant of the infamous Diskcoder ransomware EternalPetya |
2017-10-24 ⋅ Cisco Talos ⋅ Threat Spotlight: Follow the Bad Rabbit EternalPetya |
2017-10-24 ⋅ ESET Research ⋅ Bad Rabbit: Not‑Petya is back with improved ransomware EternalPetya |
2017-10-24 ⋅ Kaspersky Labs ⋅ Bad Rabbit ransomware EternalPetya |
2017-10-24 ⋅ Wired ⋅ New Ransomware Linked to NotPetya Sweeps Russia and Ukraine EternalPetya |
2017-09-19 ⋅ NCC Group ⋅ EternalGlue part one: Rebuilding NotPetya to assess real-world resilience EternalPetya |
2017-08-24 ⋅ ESET Research ⋅ Bad Rabbit: Not‑Petya is back with improved ransomware EternalPetya Sandworm |
2017-08-11 ⋅ Threatpost ⋅ Ukrainian Man Arrested, Charged in NotPetya Distribution EternalPetya |
2017-07-14 ⋅ Malwarebytes ⋅ Keeping up with the Petyas: Demystifying the malware family EternalPetya GoldenEye PetrWrap Petya |
2017-07-03 ⋅ The Guardian ⋅ 'NotPetya' malware attacks could warrant retaliation, says Nato affiliated-researcher EternalPetya |
2017-07-03 ⋅ G Data ⋅ Who is behind Petna? EternalPetya |
2017-07-03 ⋅ CrowdStrike ⋅ NotPetya Technical Analysis Part II: Further Findings and Potential for MBR Recovery EternalPetya |
2017-06-30 ⋅ ESET Research ⋅ TeleBots are back: Supply‑chain attacks against Ukraine EternalPetya |
2017-06-30 ⋅ Malwarebytes ⋅ EternalPetya – yet another stolen piece in the package? EternalPetya |
2017-06-30 ⋅ Kaspersky Labs ⋅ From BlackEnergy to ExPetr EternalPetya |
2017-06-29 ⋅ Microsoft ⋅ Windows 10 platform resilience against the Petya ransomware attack EternalPetya |
2017-06-29 ⋅ Malwarebytes ⋅ EternalPetya and the lost Salsa20 key EternalPetya |
2017-06-29 ⋅ Bleeping Computer ⋅ Ransomware Attacks Continue in Ukraine with Mysterious WannaCry Clone EternalPetya |
2017-06-29 ⋅ NonPetya: no evidence it was a "smokescreen" EternalPetya |
2017-06-28 ⋅ Why NotPetya Kept Me Awake (& You Should Worry Too) EternalPetya |
2017-06-28 ⋅ Kaspersky Labs ⋅ ExPetr/Petya/NotPetya is a Wiper, Not Ransomware EternalPetya |
2017-06-28 ⋅ CrowdStrike ⋅ CrowdStrike Protects Against NotPetya Attack EternalPetya |
2017-06-27 ⋅ Kaspersky Labs ⋅ Schroedinger’s Pet(ya) EternalPetya |
2017-06-27 ⋅ SANS ⋅ Checking out the new Petya variant EternalPetya |
2017-06-27 ⋅ Medium thegrugq ⋅ Pnyetya: Yet Another Ransomware Outbreak EternalPetya |
2017-06-27 ⋅ ESET Research ⋅ New WannaCryptor‑like ransomware attack hits globally: All you need to know EternalPetya Sandworm |
2017-05-31 ⋅ MITRE ⋅ Sandworm Team CyclopsBlink Exaramel BlackEnergy EternalPetya Exaramel GreyEnergy KillDisk MimiKatz Olympic Destroyer Sandworm |