last update: 05-03-2017 07:09 [출처 - tistory
TRANSCRIPT
Last update: 05-03-2017 07:09 [출처: AV-TEST GmbH, www.av-test.org]
Ransom322016.01.01
DMALocker1.0
2016.01.02
CryptoJoker2016.01.04
TeslaCrypt3.0
2016.01.12
Magic2016.01.13
Lechiffre2016.01.16
7ev3n2016.01.26
HydraCrypt2016.02.03
NanoLocker2016.02.04
DMA Locker 2.0
2016.02.08
UmbreCrypt2016.02.10
PadCrypt2016.02.14
LockyRansomware2016.02.16
DMA Locker 3.0
2016.02.22
CTB-Locker for Web
2016.02.23
Keranger(Mac)
2016.03.06
CERBER2016.03.07
SAMSAM(SaMaS)
2016.03.17
TeslaCrypt4.0
2016.03.19
Maktub2016.03.22
PETYA2016.03.25
PowerWare2016.03.25
Coverton2016.03.26
KimcilWare2016.03.30
Rokku2016.03.31
ManameCrypt
2016.04.07
Shade (Var)2016.04.08
Jigsaw2016.04.11
KOVTER2016.04.15
CryptXXX 1.02016.04.20
CryptoBit2016.04.20
TeslaCrypt4.1
2016.04.20
7ev3n-Hone$t
2016.04.23
TrueCrypter2016.04.27
TeslaCrypt4.2
2016.04.28
Alpha2016.04.30
Bucbi2016.05.06
Enigma2016.05.09
CryptoMix2016.05.09
CryptoHitman
2016.05.11
SHUJIN2016.05.12
Mischa2016.05.12
CrypRen2016.05.12
CryptXXX 2.02016.05.13
The END of TeslaCrypt2016.05.18
DMALocker4.0
2016.05.19
SNSLocker2016.05.20
CryptXXX 3.02016.05.24
BadBlock2016.05.24
ZCryptor2016.05.26
The Invisible Empire
2016.05.26
LockyTemporary
Inactivity2016.05.30
CryptXXX 3.12016.06.01
Shade (Var)2016.06.02
Black Shades2016.06.03
Autumn (Herbst)
2016.06.03
Crysis2016.06.07
RAA2016.06.14
Ded Cryptor2016.06.17
Jigsaw (Var)2016.06.17
Buggy Russian
(Crypt38)2016.06.17
Locky is BACK!
2016.06.20
Kozy.Jozy2016.06.20
CryptoRoger2016.06.21
CryptXXX 3.22016.06.21
MIRCOP2016.06.24
EduCrypt2016.06.27
Bart2016.06.27
Locky (Zepto)2016.06.28
Satana2016.06.29
Alfa (Alpha)2016.07.06
CryptXXX 4.02016.07.07
CryptXXX 5.02016.07.10
CTB-Faker2016.07.11
CryptoFinancial
2016.07.12
cuteRansomware
2016.07.12
WildFire2016.07.13
Locky(.wsf Var.)2016.07.13
Stampado2016.07.15
CrypMIC2016.07.20
HolyCrypt2016.07.20
Vault2016.07.20
PoshCoder2016.07.21
TorrentLocker
2016.07.26
UYARI2016.07.28
Anonymous Jigsaw
2016.07.29
Venus Locker2016.08.04
CERBER 2.02016.08.04
Mimics2016.08.05
Hitler-Ransomware
2016.08.08
R9802016.08.10
PokemonGoRansomware2016.08.14
CryptoLockerVar.
2016.08.14
Shark2016.08.15
Korean2016.08.16
F-Society Ransomware2016.08.18
DetoxCrypto2016.08.19
Alma Locker2016.08.22
Globe2016.08.24
Fantom2016.08.25
Locky (DLL)2016.08.25
Domino2016.08.26
FairWare2016.08.29
CERBER 3.02016.08.31
Nullbyte2016.09.01
TorrentLocker Var.
2016.09.01
CryLocker2016.09.05
Philadelphia2016.09.08
RAA 변형2016.09.09
NoobCrypt2016.09.12
Atom2016.09.12
Locky (NSIS)2016.09.12
HDDCryptor(Mamba)
2016.09.14
StampadoVar.
2016.09.15
Fantom Var.2016.09.21
MarsJoke2016.09.23
Nagini2016.09.26
Donald Trump
2016.09.26
Locky (Odin)2016.09.26
Princess Locker
2016.09.28
TeamXrat(Xpan)
2016.09.29
CERBER 4.02016.10.02
Polyglot2016.10.03
Hades Locker2016.10.05
DXXD2016.10.10
CryPy2016.10.13
Exotic2016.10.14
JapanLocker2016.10.19
Click Me2016.10.19
Locky (SHIT)2016.10.24
Notification2016.10.25
Hucky2016.10.25
Locky (THOR)2016.10.25
Survey2016.10.27
CERBER 4.12016.10.31
Smash!2016.11.03
PayDOS2016.11.04
SERPENT2016.11.04
Telecrypt2016.11.08
Heimdall2016.11.09
iRansom2016.11.11
Ransoc2016.11.13
PC Locker 3.12016.11.14
Karma2016.11.14
PCLock2016.11.15
CryptoLuck2016.11.15
Crypton2016.11.17
CHIP2016.11.18
Locky(Facebook)2016.11.20
Locky (AESIR)2016.11.21
CERBER 5.02016.11.24
Locky(ZZZZZ)
2016.11.24
VindowsLocker
2016.11.28
Kangaroo2016.11.28
CERBER 5.12016.12.02
Locky(OSIRIS)
2016.12.05
GoldenEye2016.12.06
Popcorn Time
2016.12.08
CryptoWire2016.12.09
CERBER Christmas
2016.12.09
Koolova2016.12.23
DeriaLock2016.12.24
KillDisk (Win)2016.12.29
2016년도, 163종 (월평균 13종)의신종랜섬웨어발견
2013~2015년 9종의랜섬웨어유행, 불과 1년만에 18배증가
Venus Locker
(국내변형)
2017.01.03
Merry
Christmas
2017.01.04
FireCrypt
2017.01.04
KillDisk (Linux)
2017.01.05
Stampado
(Var.)
2017.01.09
Spora
2017.01.10
Marlboro
2017.01.12
Satan
2017.01.19
VenusLocker
변형
2017.01.20
Sage 2.0
2017.01.21
Nabucur (Var.)
2017.01.25
Netflix Scam
2017.01.29
CryptoShield 1.0
(CryptoMix Var.)
2017.01.31
Raniel RaaS
2017.02.03
YourRansom
2017.02.04
Erebus
2017.02.07
Crysis
2017.02.09
Serpent
2017.02.08
DynA-Crypt
2017.02.09
SerbRansom
2017.02.11
Hermes
2017.02.16
CERBER Ver.6
2017.02.17
TrumpLocker
(VenusLocker Var)
2017.02.22
FindZip (Mac)
2017.02.22
Unlock26
2017.02.25
CryptoLocker
(Var.)
2017.02.27
Dharma
(Crysis Var.)
2017.03.01
RanRan
2017.03.08
CERBER (Var.)
2017.03.09
CryptoBlock
2017.03.10
Enjey
2017.03.13
PetrWrap
2017.03.14
Revenge
(CryptoMix Var.)
2017.03.15
Kirk
2017.03.16
LLTP
(VenusLocker Var)
2017.03.21
Polski
2017.03.21
Vortex
2017.03.21
Flotera
2017.03.21
CryptoShield
2.0
2017.03.24
PyCL
2017.03.28
CERBER (Var.)
2017.03.28
Sanctions
2017.03.31
Stolich
2017.04.06
LMAOxUS
2017.04.06
RensenWare
2017.04.06
Philadelphia
(Var.)
2017.04.07
Matrix
2017.04.07
Sage 2.2
2017.04.09
Mole
2017.04.12
VenusLocker
Var.
(인터파크건 위장)
2017.04.13
CradleCore
2017.04.13
Karmen
2017.04.18
AES-NI
2017.04.21
Xpan
(TeamXrat Var)
2017.04.24
Fatboy
2017.05.05
Amnesia
2017.05.08
BitKangoroo
2017.05.08
RSAUtil
2017.05.09
Jaff
2017.05.11
WannaCryptor
2017.05.12
나날이고도화되는공격및유포방식
다국어서비스는기본!
재전파기능탑재!
Windows OS의보안취약점(MS17-010)을악용하여네트워크전파수행
다양한문서파일(doc, ppt, hwp등)외다수의파일을암호화 (암호화된파일의확장자: WNCRY or WNCRYT)
전세계 150개국 20여만대의 PC 감염, 정부기관, 병원, 학교, 사회기반시설등다양한산업군별피해확산
공격자
1차공격대상악성메일전달(도용이메일계정)
4
문서취약점악성코드작성
1
다수의국가통한IP주소세탁2
수신자속이기위한제목/내용메일작성3
피해기관
개별파일삭제
특정일시HDD 파괴
트래픽유발
정보유출
공격대상기관전·현직임직원이메일계정입수
0
전자서명탈취
개발소스파악
인프라장악& 악용
2차공격대상
지능형보안위협대응
Network Sandbox
Endpoint 보안연계
E-Mail 필터링연계
망연계솔루션연계
8
업무망인터넷망
MDS를통해망간전송자료에대한분석
업무망인터넷망
9
MDS를통해망간전송자료에대한분석
관리효율성(1대의장비로인터넷/망연계구간대응)
다양한경로로유입되는위협에대한대응체계마련
전용에이전트(MDS Agent) Execution Holding(실행보류)기능을이용한감염원천차단
스팸차단서버 Zone메일서버 Zone 이메일APT 대응시스템
스팸차단서버 Zone메일서버 Zone 이메일APT 대응시스템
APT / Unknown 악성메일유입에대한가시성확보
랜섬웨어감염자급감및인프라그룹의불필요한업무감소
코드난독화 디지털(전자)서명탈취
샌드박스우회형악성코드증가및고도화
각종OS 및어플리케이션의취약점을이용한공격
Power of Visibility공격과위협의흐름도
Machine LearningQuantum Learning
16
MDS 10000
망분리전내부 PC에대한전수조사완료
기운영중인보안솔루션의한계극복
유입파일에대한실시간분석및대응
Process
Technology
People
Business(고객환경)
