Equation: The Death Star of Malware Galaxy
by Kaspersky Lab GReAT
February 16, 2015
https://securelist.com/equation-the-death-star-of-malware-galaxy/68750/
| Notes |
|---|
| Equation Group |
| GReAT |
| Kaspersky Lab |
| Death Star |
| malware |
| Houston Texas |
| CDROM |
| cyberespionage |
| 0-day |
| malware sample |
| command and control |
| Stuxnet |
| Flame |
| trojan |
| EQUATIONLASER |
| EQUATIONDRUG |
| DOUBLEFANTASY |
| TRIPLEFANTASY |
| FANNY https://securelist.com/a-fanny-equation-i-am-your-father-stuxnet/68787/ |
| GRAYFISH |
| implant |
| SKYHOOKCHOW |
| UR |
| KS |
| SF |
| STEALTHFIGHTER |
| DRINKPARSLEY |
| STRAITACID |
| LUTEUSOBSTOS |
| STRAITSHOOTER |
| DESERTWINTER |
| GROK |
| RMGREE5 |
| user folder |
| nls_933w.dll |
| firmware malware |
| Seagate, Western Digital, Toshiba, Maxtor, IBM |
| worm |
| LNK exploit CVE-2010-2568 |
| USB stick |
| Microsoft |
| MS09-025 |
| air-gapped network |
| USB-based command and control |
| TheSAS2015 |
| YARA |
| this article has extensive yara rules and hashes for Equation Group samples |