Case Study: CipherTrace mitigates ransomware risk and traces illicit crypto flows with Maltego

How to Evaluate Malware Threats and Identify Affiliates Amidst A Ransomware Attack

The customer, CipherTrace, a developer of cryptocurrency intelligence solutions, faced the challenge of helping organizations conduct necessary due diligence during a ransomware attack. When a victim is compromised, paying the ransom to a sanctioned entity can result in severe penalties, requiring investigators to identify the threat actors and analyze their cryptocurrency transaction history to mitigate legal and financial risks.

The vendor, Maltego, provided its investigative platform integrated with CipherTrace's cryptocurrency intelligence data. This solution enabled analysts to map relationships between threat actors, uncover historical Bitcoin addresses linked to the NetWalker ransomware, and trace transaction patterns to confirm the malicious actors' revenue-sharing model and fund movements. By using Maltego, investigators could efficiently perform critical blockchain analysis to avoid sanction violations and accelerate the overall threat intelligence process.

CipherTrace