Global ATM Malware Wall

All off-topic discussion goes here.
Post Reply
User avatar
Global Moderator
Posts: 1684
Joined: Sat Apr 10, 2010 5:54 pm
Location: Seireitei, Soul Society

Mon Mar 18, 2019 4:08 am


Hi there,
With few guys we made a zoo dedicated to malware targeting ATM platforms, as far as i know nobody has made a similar public project so voila.
You will find here malwares that specifically targets ATMs, and reports (notice) about them.
Files of interest got harvested from this board, but also virustotal and various other services and peoples interested about the project.
I'm using binGraph, pedump, Python, bintext, for the engine on reports.
  • Some samples exist in 'duplicate' on the wall (we also provide unpacks for few files), if it is the case: it's mentioned on the report.
  • We have hashs who are without references (i mean not associated in a white paper or something) thoses files are regrouped on the statistics page, we tried to make the stat page interesting enough for everyone to have fun exploring the zoo from the stats.
  • We have IoCs that others seem to don't have, e.g kaspersky report about winpot, that leaded also to funny react from ppl selling it no worry, everyone have it now.
  • We have also a page that includes some yara rules for detecting some of these malwares, and a page with goodies, voila!
  • Everything provided in old skool style, intro also available! CyberCrime quality ;)
Feedback welcome, enjoy the ride !
User avatar
Global Moderator
Posts: 4903
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation

Mon Mar 18, 2019 4:12 am

Looks cool, also I added link to it here List of Malware Sources
Ring0 - the source of inspiration
Post Reply