Author Archives: Dancho Danchev

Dipshit. The deepest of them all.

Stay tuned! Continue reading Happy Holidays From The (Not) Republic of Bulgaria – An Analysis – Part Five→

I would like to take the time and effort and let you know about my latest project which is called Hacker Database. Obtain access here.Sample screenshots:Sample visualizations produced using the database in GraphML format: Continue reading Hacker Database→

If an image is worth a thousand words then check out the following which although released in 2006 appears to be one of the cybercrime ecosystem’s most sophisticated and advanced compromised hosts management tool within the ecosystem up to present day…. Continue reading How Do Cybercriminals Manage Compromised Hosts Using Desktop Management Applications? – An Analysis→

Awesome.Emails known to have been involved in the campaign include:iserdo@gmail.comtoadmin@1337crew.infowg.fatal@gmail.comemailedgov.hacN@gmail.comadmin@1337crew.infojernej_5@hotmail.comusediserdo@gmail.comtoiserdo@gmail.comschlist90210@gmail.comWaiste… Continue reading Who’s Behind the Butterfly Bot/DCI Bot/DownTroj/Aspergillus Botnet Malicious Software?→

“An OSINT conducted today is a tax payer’s buck saved somewhere”.Official U.S Secret Service $1M reward listing on U.S Secret Service’s Most Wanted Cybercriminals List for “Oleksandr Vitalyevich Ieremenko”.Handle: Zl0m; Lamarez; Ded.MCz; l@m@rEzEmail: … Continue reading Exposing the Ukrainian Insider Trading Hackers that Stole $30M Using a SEC’s EDGAR Securities Fraud Scheme – The Technical Details – Exclusive→

Who remembers the 2009’s malvertising campaign (hxxp://trueconv.com) on the NYTimes and ESPN including FoxNews at the time which was dropping scareware also known as fake security software on the hosts of affected users who appear to have clicked an in… Continue reading Exposing the Web’s Most Prolific Malvertising Operation Circa 2009 – Exclusive→

Guess who’s been busy setting them straight in cyberspace? Well that would be unfortunately throughout 2008–2013 when I was most active online making the headlines at unknown places online making my day and inspiring me to track down the Koobface botne… Continue reading How I Got Busted for Loving the U.S in Cyberspace?→

I decided to share with everyone a currently active set of botnet C&C panels which I obtained using OSINT and public sources which are currently active in the time of posting this with the idea to raise more awareness on their existence and potenti… Continue reading Today’s Compilation of Botnet’s C&C Panels→

While digging into my old threat intelligence research archive I found the following which I decided to share with everyone.Happy “takes you back doesn’t it” time and OSINT and threat intelligence for historical cross-checking and connecting the dots t… Continue reading A Compilation of Koobface Botnet Themed Malicious Executable Download Locations 2009 – 2011→

If anyone’s interested in advanced online OSINT and advanced online cyber threat actor profiling and threat intelligence training both individually or in group feel free to drop me a line at dancho.danchev@hush.com to discuss. This is the primary … Continue reading Who Needs or Wants OSINT and Threat Intelligence Training?→