Security Advisory: EternalRocks and other Malware Variants Utilising The Shadow Brokers Leaked NSA Exploits

Security Advisory: EternalRocks and other Malware Variants Utilising The Shadow Brokers Leaked NSA Exploits

Published by Elad Sharf, Nick Griffin (May 24, 2017)

Performanta is aware of additional malware variants, like ‘EternalRocks’, exploiting the same vulnerabilities as WannaCry and additional attack vectors leaked by The Shadow Brokers group.

If you’ve followed our previous advisory and protected yourself against WannaCry, you should be protected against the exploitation mechanism of new variants.

  1. Ensure the MS17-010 security
Read the rest

Can North Korea be Linked to WannaCry? A Timestamp Analysis

Published by Nick Griffin (May 19, 2017)

Performanta have analysed three earlier variants of the WannaCry ransomware from April and May 2017 which attempt to guess and brute-force passwords used for SMB in order to copy themselves to network shares. These samples are evidence that the WannaCry malware author(s) have long intended to launch a widespread ransomware epidemic. We also … Read the rest


WannaCry: What’s Real and What’s Not?

Published by Nick Griffin, Elad Sharf (May 17, 2017)

Over the last few days the WannaCry epidemic has sparked a media frenzy, with many jumping on the publicity bandwagon. There is a lot of information out there, but how do we separate the truth from the fiction? In this blog we will document the known facts and provide evidence for … Read the rest