StoneDrill

Description

StoneDrill is wiper malware discovered in destructive campaigns against both Middle Eastern and European targets in association with APT33.

Names

Name
StoneDrill
DROPSHOT

Category

Malware

Type

• Wiper

Information

• https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/07180722/Report_Shamoon_StoneDrill_final.pdf
• https://www.fireeye.com/blog/threat-research/2017/09/apt33-insights-into-iranian-cyber-espionage.html
• https://www.megabeets.net/decrypting-dropshot-with-radare2-and-cutter-part-1/
• https://www.megabeets.net/decrypting-dropshot-with-radare2-and-cutter-part-2/

Mitre Attack

• https://attack.mitre.org/software/S0380/

Malpedia

• https://malpedia.caad.fkie.fraunhofer.de/details/win.stonedrill
• https://malpedia.caad.fkie.fraunhofer.de/details/win.dropshot

Alienvault Otx

• https://otx.alienvault.com/browse/pulses?q=tag:stonedrill

Other Information

Uuid

3fbd9978-1421-4d34-9a4e-507fd1880629

Last Card Change

2020-05-13