{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:13:07Z","timestamp":1750219987785,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":24,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,4,12]],"date-time":"2023-04-12T00:00:00Z","timestamp":1681257600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,4,12]]},"DOI":"10.1145\/3564746.3587004","type":"proceedings-article","created":{"date-parts":[[2023,6,12]],"date-time":"2023-06-12T18:29:00Z","timestamp":1686594540000},"page":"39-46","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["Conti Ransomware Development Evaluation"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-8380-2487","authenticated-orcid":false,"given":"Saleh","family":"Alzahrani","sequence":"first","affiliation":[{"name":"Department of Computer Science, The University of Alabama, Tuscoloosa, AL, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8549-6794","authenticated-orcid":false,"given":"Yang","family":"Xiao","sequence":"additional","affiliation":[{"name":"Department of Computer Science, The University of Alabama, Tuscaloosa, Al, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7405-7646","authenticated-orcid":false,"given":"Sultan","family":"Asiri","sequence":"additional","affiliation":[{"name":"Department of Computer Science, The University of Alabama, Tuscaloosa, Al, USA"}]}],"member":"320","published-online":{"date-parts":[[2023,6,12]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Lawrence Abrams. 2020. Ryuk Successor Conti Ransomware Releases Data Leak Site. BleepingComputer. https:\/\/www.bleepingcomputer.com\/news\/security\/ryuk-successor-conti-ransomware-releases-data-leak-site"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/DeSE54285.2021.9719456"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3207757"},{"key":"e_1_3_2_1_4_1","unstructured":"Brian Baskin. 2020. Tau Threat Discovery: Conti Ransomware. https:\/\/blogs.vmware.com\/security\/2020\/07\/tau-threat-discovery-conti-ransomware.html"},{"key":"e_1_3_2_1_5_1","unstructured":"Drew Batchelor. 2018. PATHISDIRECTORYW function. Microsoft. https:\/\/learn.microsoft.com\/en-us\/windows\/win32\/api\/shlwapi\/nf-shlwapi-pathisdirectoryw"},{"key":"e_1_3_2_1_6_1","unstructured":"Drew Batchelor Michael Satran Mike Jacobs and David Coulter. 2020. About Restart Manager - WIN32 Apps. Microsoft. https:\/\/learn.microsoft.com\/en-us\/windows\/win32\/rstmgr\/about-restart-manager"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2945839"},{"key":"e_1_3_2_1_8_1","volume-title":"All-Time Low in Share of All Cryptocurrency Activity. The Chainalysis 2022 Crypto Crime Report","author":"Team Chainalysis","year":"2022","unstructured":"Chainalysis Team. 2022. Crypto Crime Trends for 2022: Illicit Transaction Activity Reaches All-Time High in Value, All-Time Low in Share of All Cryptocurrency Activity. The Chainalysis 2022 Crypto Crime Report 2022. Chainalysis Inc, New York, NY, USA."},{"key":"e_1_3_2_1_9_1","unstructured":"Catalin Cimpanu. 2020. Conti Ransomware Uses 32 Simultaneous CPU Threads for Blazing-fast Encryption. https:\/\/www.zdnet.com\/article\/conti-ransomware-uses-32-simultaneous-cpu-threads-for-blazing-fast-encryption"},{"key":"e_1_3_2_1_10_1","unstructured":"CISA FPI and HHS. 2020. Alert (AA20-302A). https:\/\/www.cisa.gov\/uscert\/ncas\/alerts\/aa20-302a"},{"key":"e_1_3_2_1_11_1","unstructured":"DarkTracker. 2019. Intelligence Report on Ransomware Gangs on the Darkweb. DarkTracker. https:\/\/drive.google.com\/file\/d\/1MI8Z2tBhmqQ5X8Wf_ozv3dVjz5sJOs-3"},{"key":"e_1_3_2_1_12_1","unstructured":"Jason Gerend. 2022. Volume Shadow Copy Service. Microsoft. https:\/\/learn.microsoft.com\/en-us\/windows-server\/storage\/file-server\/volume-shadow-copy-service"},{"key":"e_1_3_2_1_13_1","unstructured":"Andrew Ivanov. 2019. The Digest \"Crypto-Ransomware\". Blogger. https:\/\/id-ransomware.blogspot.com\/2019\/11\/conti-ransomware.html"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1155\/2015"},{"key":"e_1_3_2_1_15_1","unstructured":"Edward Kost. 2021. What is Ransom ware as a Service (RaaS)? the Dangerous Threat to World Security: Upguard. UpGuard. https:\/\/www.upguard.com\/blog\/what-is-ransomware-as-a-service"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/MITP.2017.3680961"},{"key":"e_1_3_2_1_17_1","volume-title":"The Highlights, Trends, and Learnings from 2021's Threat Landscape. Annual Threat Monitor 2021","author":"NCC Group","year":"2021","unstructured":"NCC Group. 2021. The Highlights, Trends, and Learnings from 2021's Threat Landscape. Annual Threat Monitor 2021 2021. NCC Group, Austin, TX, USA."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","unstructured":"Kris Oosthoek Jack Cable and Georgios Smaragdakis. 2022. A Tale of Two Markets: Investigating the Ransomware Payments Economy. 10.48550\/ARXIV.2205.05028","DOI":"10.48550\/ARXIV.2205.05028"},{"key":"e_1_3_2_1_19_1","unstructured":"Proton. 2021. Proton Mail. Proton. https:\/\/proton.me\/mail"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/MALWARE.2015.7413680"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.14421\/ijid.2021.2423"},{"key":"e_1_3_2_1_22_1","unstructured":"Reini Urban. 2021. Smhasher\/MurmurHash2. GitHub. https:\/\/github.com\/rurban\/smhasher\/blob\/4db9ed2dc7\/MurmurHash2.cpp"},{"key":"e_1_3_2_1_23_1","unstructured":"Steve Whims. 2021. WMIC - WIN32 Apps. Microsoft. https:\/\/learn.microsoft.com\/en-us\/windows\/win32\/wmisdk\/wmic"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102388"}],"event":{"name":"ACMSE 2023: 2023 ACM Southeast Conference","acronym":"ACMSE 2023","location":"Virtual Event USA"},"container-title":["Proceedings of the 2023 ACM Southeast Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3564746.3587004","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3564746.3587004","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:49:30Z","timestamp":1750182570000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3564746.3587004"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,4,12]]},"references-count":24,"alternative-id":["10.1145\/3564746.3587004","10.1145\/3564746"],"URL":"https:\/\/doi.org\/10.1145\/3564746.3587004","relation":{},"subject":[],"published":{"date-parts":[[2023,4,12]]},"assertion":[{"value":"2023-06-12","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}