Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime

[cryptomaniac_xxx]

Vladimir Dunaev, 28, was arrested in South Korea and was extradicted to the US to faced charges with his involvement to Trickbot malware:

A Russian national, who was arrested in South Korea last month and extradited to the U.S. on October 20, appeared in a federal court in the state of Ohio on Thursday to face charges for his alleged role as a member of the infamous TrickBot group.

https://thehackernews.com/2021/10/russian-trickbot-gang-hacker-extradited.html

I'm sure some of us here are familiar with this malware as it leave a lot of footprints specially in crypto mining.

TrickBot is capable of data exfiltration over a hardcoded C2 server, cryptomining, and host enumeration (e.g., reconnaissance of Unified Extensible Firmware Interface or Basic Input/Output System [UEFI/BIOS] firmware) (Exfiltration Over C2 Channel [T1041], Resource Hijacking [T1496], System Information Discovery.[2] For host enumeration, operators deliver TrickBot in modules containing a configuration file with specific tasks.

https://us-cert.cisa.gov/ncas/alerts/aa21-076a

Let's see how US will handle this case as the involved is a Russian National. And they really work hard to capture a lot of cyber criminals around the globe.

They still have a Latvian national on their custody as well: Alla Witte known as Max

A Latvian national was arraigned in federal court in Cleveland, Ohio, today on multiple charges stemming from her alleged role in a transnational cybercrime organization responsible for creating and deploying a computer banking trojan and ransomware suite of malware known as “Trickbot.”

https://www.justice.gov/opa/pr/latvian-national-charged-alleged-role-transnational-cybercrime-organization

[1715131066]

1715131066

[1715131066]

1715131066

[SFR10]

I'm sure some of us here are familiar with this malware as it leave a lot of footprints specially in crypto mining.

Surprisingly, this is the first time that I'm reading about that specific crypto-mining malware and I'm glad that the developer in question "might" face up to 60 years in prison, but unfortunately, that still not going to stop the spread unless every single one of the fraudsters from that group/gang are captured, before the affected devices are treated!

• If found guilty on all counts, the defendant faces a total prison term of 60 years.

[Lucius]

I'm not familiar with the details of this scam, but I'm always surprised by the fact that some people are extremely intelligent when it comes to designing and carrying out a malicious operation - but they are not intelligent when it comes to protecting their identity, which would include avoiding countries which have very good relations with the US, and South Korea executes every US request without discussion.

Given the scale of the crimes, 60 years in prison seems quite appropriate - and I would like all countries to treat such crimes in the same way.

[dothebeats]

If the creators of the malware were able to craft such an intricate and complicated piece of code to mess with people's computers and still able to leave lots of footprints for them to get tracked, it's either they're too confident of their abilities or they underestimated the tech that other people possess in order to dig for clues to pin them. The US has been pretty hard with hackers in recent times, especially foreign nationals messing with their systems or their people. I'm quite curious how will they be keeping a firm grip on the hacker given that Russia 'negotiates' with these kinds of affairs.

[Baofeng]

No doubt about it 60 years should be just fined for this criminals.

Trickbot is one hell of an advance malware that cyber threat analyst have been in years.

Usually spread in emails and the victims is not aware that they have been infected by it until it was too late. The sophistication and the level of how they infect their victims, regardless if it is business enterprises or individual is really one of a kind.

I do hope they can capture more individuals/groups of cyber criminals.

[Kemarit]

Oh well, good riddance to this cyber criminals, they really thought that they are above the law and can't be reached by the US.

So this guy makes a lot of mistakes, travel to a country wherein there is extradition treaty to US and then get capture, too sloppy for a high stakes criminals. Now he has to suffer the consequences, facing up to 60 years? By the time he gets out, he will be 80++ so I doubt that he will survived that long in the prison.

[Obito]

This is quite a good maneuver, never expected a Russian criminal to ever be extradited let alone get captured by the US law enforcement, most cases involving Russian cybercrimes, they're mostly protected by the Russian government themselves albeit in the shadows. This is a bg thing because with people getting caught for this kind of offense sends the message of how serious our problem is regarding cyber security.