Reporting Malware Abuse

Hugo Davidson March 30, 2022

I honest to god thought this was going to be a lot easier. Turns out you're not allowed to contact the support team directly if you're not a paid member. 

But anyways, onto the point.

 

I'm a malware researcher and found that there is malware being hosted on your platform at https://bitbucket.org/vac44401/zxczxczc/downloads/ - used in a Vidar (ArkeiStealer) loader campaign.

VT Report: https://www.virustotal.com/gui/file/c1e4377a3cf1c7afe32204d7d9e0244d7c04ab1f6435920cd5155ab92deea552/detection

 

Intezer Analysis: https://analyze.intezer.com/analyses/c7441775-29a0-4df1-8d0b-3080562408e0

 

Original Malware Analysis: https://app.any.run/tasks/568ad57d-d080-4099-b2f2-5d9dabcb9405 (note the HTTP requests section pointing to a bitbucket URL). 

 

Any assistance with taking this down would be much appreciated.

1 answer

1 vote
Caroline R
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
March 31, 2022

Hi, @Hugo Davidson, welcome to the community! 

Thank you for reporting this case to us, we really appreciated it. We have confirmed that the repository contained malicious content, so we have taken down the account as malware. 

Please feel free to share any additional questions regarding this case.

Kind regards,
Caroline

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events