Eric Geller

@ericgeller ↗

Deleted No

Hibernated Yes

Last Checked Nov. 18, 2022

Created

Thu Feb 24 01:31:31 +0000 2022

Likes

Retweets

Source

TweetDeck

View Raw Data

JSON Data

View on Twitter

Likely Available

Eric Geller @ericgeller

#HermeticWiper accepts command-line arguments, suggesting that the hackers could have deployed it via a script, according to CrowdStrike's @Adam_Cyber. The two commands tell the malware: (1) how long to stay asleep on a target before activating (2) when to shut the PC down — PolitiTweet.org

Posted Feb. 24, 2022 Hibernated

Preceded By

Eric Geller @ericgeller

Partition Master, not Partition Manager, sorry. — PolitiTweet.org

Guerrero-Saade likened #HermeticWiper to Shamoon (Saudi Aramco hack) and Destover (Sony hack) in that it deploys an… https://t.co/ihvcGfplN4

Posted Feb. 24, 2022 Hibernated

Followed By

Eric Geller @ericgeller

Meyers called #HermeticWiper "pretty nasty" and noted that it disables a Windows security feature called Volume Shadow Copy, which creates backups of files. A lot of ransomware does this. "It takes some care to make sure that it's going to make a big mess for the target." — PolitiTweet.org

Posted Feb. 24, 2022 Hibernated