Sourcefire

Analysis of Shamoon/W32.Disstrack malware

This video describes the malware associated with the Shamoon attacks (also known as W32.Disstrack). This particular attack targeted the energy sector and Saudi Aramco reported that 30,000+ PCs in their environment were compromised by Shamoon. Overall, the evidence suggests that Shamoon was the doing of a politically motivated hactivist group rather than a well-funded nation state (despite some superficial similarities with threats like Flame, which itself is believed to be from the same group that developed Stuxnet, Duqu, and Gauss).

RunTime - 9:44

Uploaded - 10 Apr 2013

 

 
©2014 Cisco and/or its affiliates. All rights reserved.