Atmosphere

Description

(Group-IB) To control the ATM dispenser, Silence uses a unique software called Atmosphere. Over time the Trojan has significantly evolved to address the needs of the criminals. For example, the developers have changed the logic of injection into processes and added the flexible injector, which has expanded the list of targeted ATMs. They have also removed the redundant features that interrupted the operation or were not used by the criminals. For example, the last version of the software didn’t process commands from the PIN pad and the generated log got smaller. In the initial stages, the software was recompiled a lot, which resulted in several unsuccessful cashout attempts.

Names

Name
Atmosphere

Type

ATM malware

Information

https://www.group-ib.com/resources/threat-research/silence_moving-into-the-darkside.pdf

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.atmosphere

Other Information

Uuid

a06e89c3-ca40-496d-a7eb-183f2816ae94

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

Atmosphere

Atmosphere

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks