Dancho Danchev's Blog - Mind Streams of Information Security Knowledge: Exposing 29A Virus Coding Group

Tuesday, September 07, 2021

Exposing 29A Virus Coding Group - An OSINT Analysis

In this analysis I'll provide personally identifiable information on some of the key members of the infamous 29A Virus Coding Group for the purpose of assisting U.S Law Enforcement and the U.S Intelligence Community on its way to track down and prosecute the cybercriminals behind these campaigns.

Personal email belonging to the group: 29A@sourceofkaos.com

Group's personal Web site: http://sourceofkaos.com/homes/29a/

Second group's Web Site: http://www.29a.net/ - Email: m0n305@terra.es

Personally identifiable information for GriYo: – Spain – Email: griyo@akrata.org - http://www.geocities.com/Area51/Corridor/2618 - Email: Dreamcatcher5072@aol.com - Email: griyo@hellsparty.com; griyo29A@hotmail.com- http://griyo.hellsparty.com - Email: griyo@bi0.net - https://twitter.com/griyo666- http://vxug.fakedoma.in - https://www.facebook.com/pg/djgriyo

Personal Emails belonging to 29A Team Members:

- Jacky Qwerty – Peru - jqwerty@cryogen.com

- Mental Driller – Spain - mental_driller@hotmail.com

- Reptile - Canada - bwaha@hotmail.com

- SoPinky – Argentina - msopinky@hotmail.com

- Super – Spain - super_29a@mixmail.com

- Tcp – Spain - tcp@cryogen.com

- Vecna – Brazil - vecna@antisocial.com

- VirusBuster – Spain - darknode@oninet.es - Email: virusbuster@terra.es

- Z0mbie – Russia - zloebuchij_zasrakomondohooy@usa.net

- Darkman - Denmark darkman@sourceofkaos.com

- roy g biv - iam_rgb@hotmail.com

Personally Identifiable Information for Benny:

Personal Web Site: http://benny29a.cjb.net; http://benny29a.kgb.cz; http://www.benny29a.com

Sample Personal Email: benny_29a@hushmail.com; benny@post.cz; benny_29a@privacyx.com

Related personal Web sites: http://benny.bloguje.cz; http://benny.hysteria.cz

ICQ – 123122556; 156892790; UnderNet.Org server, #vir, #virus, #vxers channels

Related personal Web sites for 29A Group Members:

- Alcopaul/[rRlf] http://alcopaul.cjb.net; alcopaul@cannabismail.com

- Benny/29A http://www.coderz.net/benny; benny@post.cz

- Mental Driller/29A mental_driller@notrix.net; mental_driller@psynet.net; mental_driller@hotmail.com

- philet0ast3r/[rRlf] http://www.rRlf.de philet0ast3r@rRlf.de PhileT0ast3r@gmx.de

- ZeMacroKiller98 http://zemckiller98.multimania.com - http://membres.lycos.fr/zemckiller98 zebulon@softel.fr

- Vecna http://coderz.net/vecna

- VirusBuster http://virustradingcenter.cjb.net

- Z0MBiE http://z0mbie.host.sk http://forumer.com/bsodomon

- GriYo Spain griyo@hellsparty.com

- Ratter Czech Republic ratter@atlas.cz

- roy g biv iam_rgb@hotmail.com

- VirusBuster Spain virusbuster@terra.es

- Super super_29a@mixmail.com

Sample SNA (Social Network Analysis) Graph of 29A Virus Coding Group:

Stay tuned!

Dancho Danchev

Independent Security Consultancy, Threat Intelligence Analysis (OSINT/Cyber Counter Intelligence) and Competitive Intelligence research on demand. Insightful, unbiased, and client-tailored assessments, neatly communicated in the form of interactive reports - because anticipating the emerging threatscape is what shapes the big picture at the end of the day. Approach me at dancho.danchev@hush.com

Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

Tuesday, September 07, 2021

Exposing 29A Virus Coding Group - An OSINT Analysis

No comments:

Post a Comment