VB2016 video: Neverquest: Crime as a Service and On the Hunt for the Big Bucks

Posted by   Martijn Grooten on   Jan 30, 2017

Earlier this month, Spanish police officers arrested a Russian national on suspicion of creating the Neverquest banking trojan. Neverquest, also known as Vawtrak, is one of the most prevalent banking trojans of the moment, so while the arrest might not have a significant impact on cybercrime overall, it is good news: it sends the important message that writing malware is not without the risk of arrest.

At Virus Bulletin we are very familiar with Neverquest. Two years ago, we published the paper "Nesting Doll: unwrapping Vawtrak", in which Fortinet researcher Raul Alvarez looked at the various layers of obfuscation used by the malware. And last October, at VB2016 in Denver, CSIS's Peter Kruse gave a talk entitled "Neverquest: Crime as a Service and On the Hunt for the Big Bucks".

With the malware in the news, we have taken the opportunity to upload the video of Peter's VB2016 presentation to our YouTube channel.

Has your organisation been hit by a banking trojan, or have you maybe prevented one from doing damage? We want to hear from you! The Call for Papers for VB2017 (4-6 October in Madrid, Spain) is now open.

VB2017-300.jpg

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

WannaCry shows we need to understand why organizations don't patch

Perhaps the question we should be asking about WannaCry is not "why do so many organizations allow unpatched machines to exist on their networks?" but "why doesn't patching work reasonably well most of the time?"

Modern security software is not necessarily powerless against threats like WannaCry

The WannaCry ransomware has affected many organisations around the world, making it probably the worst and most damaging of its kind. But modern security is not necessarily powerless against such threats.

Throwback Thursday: CARO: A personal view

This week sees the 11th International CARO Workshop taking place in Krakow, Poland – a prestigious annual meeting of anti-malware and security experts. As a founding member of CARO, Fridrik Skulason was well placed, in August 1994, to shed some light…

VB2016 paper: Uncovering the secrets of malvertising

Malicious advertising, a.k.a. malvertising, has evolved tremendously over the past few years to take a central place in some of today’s largest web-based attacks. It is by far the tool of choice for attackers to reach the masses but also to target…

Throwback Thursday: Tools of the DDoS Trade

As DDoS attacks become costlier to fix and continue to increase in both number and diversity, we turn back the clock to 2000, when Aleksander Czarnowski took a look at the DDoS tools of the day.