ATMRipper

Description

(Trend Micro) Last August , security researchers released a blog discussing a new ATM malware family called Ripper which they believe was involved in the recent ATM attacks in Thailand. Large numbers of ATMs were also temporarily shut down as a precautionary measure.

That analysis gave an overview of the techniques used by the malware, the fact that it targets three major ATM vendors, and compared Ripper to previous ATM malware families. Their analysis was based on the file with MD5 hash 15632224b7e5ca0ccb0a042daf2adc13. This file was uploaded to Virustotal by a user in Thailand on August 23.

Names

Name
ATMRipper
Ripper
Ripper ATM

Type

ATM malware

Information

https://blog.trendmicro.com/trendlabs-security-intelligence/untangling-ripper-atm-malware/
https://documents.trendmicro.com/assets/white_papers/wp-cashing-in-on-atm-malware.pdf
https://www.dropbox.com/s/1xvhee0s7o12i61/Whitepaper ATM Heist GSB August 2016.pdf?dl=0

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.ripper_atm

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:ATMRIPPER

Other Information

Uuid

c80d3d14-4c5d-47e8-a960-fb9f4d13d05a

Last Card Change

2020-05-25

Threat Intelligence Garden

Explorer

ATMRipper

ATMRipper

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks