Money Over Morals: A Business Analysis of Conti Ransomware

04/23/2023
by   Ian W. Gray, et al.
0

Ransomware operations have evolved from relatively unsophisticated threat actors into highly coordinated cybercrime syndicates that regularly extort millions of dollars in a single attack. Despite dominating headlines and crippling businesses across the globe, there is relatively little in-depth research into the modern structure and economics of ransomware operations. In this paper, we leverage leaked chat messages to provide an in-depth empirical analysis of Conti, one of the largest ransomware groups. By analyzing these chat messages, we construct a picture of Conti's operations as a highly-profitable business, from profit structures to employee recruitment and roles. We present novel methodologies to trace ransom payments, identifying over 80 million in likely ransom payments to Conti and its predecessor – over five times as much as in previous public datasets. As part of our work, we publish a dataset of 666 labeled Bitcoin addresses related to Conti and an additional 75 Bitcoin addresses of likely ransom payments. Future work can leverage this case study to more effectively trace – and ultimately counteract – ransomware activity.

READ FULL TEXT
research
08/02/2019

Spams meet Cryptocurrencies: Sextortion in the Bitcoin Ecosystem

In the past year, a new spamming scheme has emerged: sexual extortion me...
research
08/02/2021

Estimating the Node Degree of Public Peers and Detecting Sybil Peers Based on Address Messages in the Bitcoin P2P Network

Some peers in the Bitcoin P2P network distributed a huge amount of spam ...
research
03/13/2020

Snapshot Samplings of the Bitcoin Transaction Network and Analysis of Cryptocurrency Growth

The purpose of this work was to perform a network analysis on the rapidl...
research
10/05/2018

The Looming Threat of China: An Analysis of Chinese Influence on Bitcoin

As Bitcoin's popularity has grown over the decade since its creation, it...
research
06/08/2021

Tackling spam in the era of end-to-end encryption: A case study of WhatsApp

WhatsApp is a popular messaging app used by over a billion users around ...
research
10/27/2019

An investigation of MMM Ponzi scheme on Bitcoin

Cybercriminals exploit cryptocurrencies, such as Bitcoin, to carry out v...
research
10/27/2019

Investigating MMM Ponzi scheme on Bitcoin

Cybercriminals exploit cryptocurrencies to carry out illicit activities....

Please sign up or login with your details

Forgot password? Click here to reset