- FBI has taken Avcheck, a site that provides services to cyber criminals
- Avcheck was used to test malware against AV -providers without raising alarms
- Two encryption services were also settled
Avcheck.net, a website that provides cyber criminals analysis services, has been taken offline as part of a major law enforcement operation performed by the FBI as well as the Dutch and Finnish police.
At the time of the press, the site had been frightened and shown the usual FBI Removal Notification: “This domain has been seized in accordance with a seizure order issued in the United States Ting right of the Southern District in Texas as part of a coordinated law enforcement operation.”
The site served as a Counter Antivirus (CAV) service, enabling cyber criminals to test their malware against multiple antivirus engines before they inmate it, which helped them remain undetected under attack. It was marketed as a “high-speed antivirus scantime checker” and allowed users to scan files, domains and IP addresses across several security tools without warning antivirus providers.
Operation Endgame
Matthijs Jaspers, team leader of the Dutch high -tech crime team, described the dismantling as an “important step” in the fight against cybercrime, “because it interferes with the activities of cyber criminals in the earliest stages and prevents victims,” published the press release, in the Dutch police site, said.
The same message was said that the study, which led to this dismantling, also gave “Key certificates” on the administrators and users of not only Avcheck, but also related services – cryptor.biz and crypt.guru.
These two were ‘encryption services’, which criminals used to “encrypt” malware, which helped avoid detection.
A separate message published at the end of May on the DOJ’s website says the operation resulted in “the seizure of four domains and their affiliated server,”.
This message did not name specific services, but it is safe to assume that it was about these three.
The recording is part of Operation Endgame, a large -scale, coordinated international initiative aimed at running cyber criminal infrastructure, especially focusing on malware and ransomware.
French, German, Ukrainian and Portuguese law enforcement also participated in different capabilities.
Via Bleeping computer
