For the only known double pulsar star system, see PSR J0737-3039.
DoublePulsar
Technical name
Double Variant
Trojan:Win32/DoublePulsar (Microsoft)
Backdoor.DoublePulsar (Fortiguard)
Dark Variant
Trojan.Darkpulsar (Symantec)[1]
Win32/Equation.DarkPulsar (ESET)[2]
Family
Pulsar (backdoor family)
Authors
Equation Group
Preview warning: Page using Template:Infobox computer virus with unknown parameter "fullname"
DoublePulsar is a backdoor implant tool developed by the U.S. National Security Agency's (NSA) Equation Group that was leaked by The Shadow Brokers in early 2017.[3][citation needed] The tool infected more than 200,000 Microsoft Windows computers in only a few weeks,[4][5][3][6][7] and was used alongside EternalBlue in the May 2017 WannaCry ransomware attack.[8][9][10] A variant of DoublePulsar was first seen in the wild in March 2016, as discovered by Symantec.[11]
Sean Dillon, senior analyst of security company RiskSense Inc., first dissected and inspected DoublePulsar.[12][13] He said that the NSA exploits are "10 times worse" than the Heartbleed security bug, and use DoublePulsar as the primary payload. DoublePulsar runs in kernel mode, which grants cybercriminals a high level of control over the computer system.[5] Once installed, it uses three commands: ping, kill, and exec, the latter of which can be used to load malware onto the system.[12]
^"Trojan.Darkpulsar". Symantec. Archived from the original on 3 October 2019.
^"Win32/Equation.DarkPulsar.A | ESET Virusradar". www.virusradar.com.
^ ab"DoublePulsar malware spreading rapidly in the wild following Shadow Brokers dump". 25 April 2017.
^Sterling, Bruce. "Double Pulsar NSA leaked hacks in the wild". Wired.
^ ab"Seriously, Beware the 'Shadow Brokers'". Bloomberg. 4 May 2017 – via www.bloomberg.com.
^"Wana Decrypt0r Ransomware Using NSA Exploit Leaked by Shadow Brokers Is on a Rampage".
^">10,000 Windows computers may be infected by advanced NSA backdoor". 21 April 2017.
^Cameron, Dell (13 May 2017). "Today's Massive Ransomware Attack Was Mostly Preventable; Here's How To Avoid It".
^Fox-Brewster, Thomas. "How One Simple Trick Just Put Out That Huge Ransomware Fire". Forbes.
^"Player 3 Has Entered the Game: Say Hello to 'WannaCry'". blog.talosintelligence.com. 12 May 2017. Retrieved 2017-05-15.
^"Stolen NSA hacking tools were used in the wild 14 months before Shadow Brokers leak". arstechnica.com. 7 May 2019. Retrieved 2019-05-07.
^ ab"DoublePulsar Initial SMB Backdoor Ring 0 Shellcode Analysis". zerosum0x0.blogspot.com. 21 April 2017. Retrieved 2017-05-16.
^"NSA's DoublePulsar Kernel Exploit In Use Internet-Wide". threatpost.com. Retrieved 2017-05-16.
original on 3 October 2019. "Win32/Equation.DarkPulsar.A | ESET Virusradar". www.virusradar.com. "DoublePulsar malware spreading rapidly in the wild following...
A pulsar (from pulsating radio source) is a highly magnetized rotating neutron star that emits beams of electromagnetic radiation out of its magnetic poles...
vulnerable systems, then uses the EternalBlue exploit to gain access, and the DoublePulsar tool to install and execute a copy of itself. WannaCry versions 0, 1...
and DoublePulsar, were used by the malware to make it a cryptoworm. EternalBlue automatically spreads the virus through networks, while DoublePulsar triggered...
A binary pulsar is a pulsar with a binary companion, often a white dwarf or neutron star. (In at least one case, the doublepulsar PSR J0737-3039, the...
2017. ETERNALBLUE contains kernel shellcode to load the non-persistent DoublePulsar backdoor. This allows for the installation of the PEDDLECHEAP payload...
Pulsars. Additionally a number of independent operators also purchased Pulsars. A double-decker version of the Pulsar was also produced as the Pulsar...
R; d'Amico, N; Joshi, B. C; Reynolds, J; Freire, P. C. C (2004). "A Double-Pulsar System: A Rare Laboratory for Relativistic Gravity and Plasma Physics"...
then, several other binary pulsars have been found, in particular the doublepulsar PSR J0737−3039, where both stars are pulsars and which was last reported...
The Wright Pulsar Gemini was a design of double-decker bus bodywork built onto VDL DB250LF chassis by Wrightbus between 2003 and 2006. It was visually...
first doublepulsar (two pulsars orbiting each other), through using the 64-metre Parkes radio telescope in Australia. Her Thesis on radio pulsars won the...
detecting that the software used a driver with behavior similar to the DoublePulsar exploit. In March 2019, the Oversight Board of United Kingdom government...
binary pulsar and measuring its orbital decay due to gravitational-wave emission, Hulse and Taylor won the 1993 Nobel Prize in Physics. A "doublepulsar" discovered...
from Russia to develop novel treatments against COVID-19 such as DRACO (double-stranded RNA activated caspase oligomerizer) and long COVID experimental...
Millisecond pulsar (MSP) ("recycled pulsar"). "Spider Pulsar", a pulsar where their companion is a semi-degenerate star. "Black Widow" pulsar, a pulsar that...
University of British Columbia. She studies pulsars and their companions as a way to study binary pulsar evolution, pulsar instrumentation and polarimetry, and...
cluster. In September 2006, the results of three years of observing a doublepulsar, PSR J0737-3039, with the Lovell telescope, as well as with the Parkes...
discovery of the double-pulsar system as well as in the discovery of several new pulsars. McLaughlin dedicates her time to the Pulsar Search Collaboratory...
rather well established for the solar system and doublepulsars. However, in GR the metric plays a double role: Measuring distances in spacetime and serving...
Physics in 1993. Further observations of this pulsar and others in multiple systems (such as the doublepulsar system PSR J0737-3039) also agree with General...
The Gemini 2 was launched in 2007 as the replacement for the Pulsar Gemini and one-off Pulsar Gemini HEV. It was semi-integral, being based on the updated...
observations of pulsars, includes several effects predicted by S. Kopeikin that are important for measuring parameters of the binary pulsars, for testing...