CORDIS
EU research results

CORDIS

English EN
Internet Forensic platform for tracking the money flow of financially-motivated malware

Internet Forensic platform for tracking the money flow of financially-motivated malware

Objective

The Internet has become a key piece of any business activity. Criminal activity is not an exception. Some crimes previous to the Internet, such as thefts and scams, have found in the Internet the perfect tool for developing their activities. The Internet allows criminals hiding their real identity and the possibility to purchase specific tools for stealing sensitive data with a very low investment.

The overall objective of RAMSES is to design and develop a holistic, intelligent, scalable and modular platform for Law Enforcement Agencies (LEAs) to facilitate digital Forensic Investigations. The system will extract, analyse, link and interpret information extracted from Internet related with financially-motivated malware.

Customers, developers and malware victims will be included in order to obtain a better understanding of how and where malware is spread and to get to the source of the threat. To achieve these ambitious objectives, this project will rely on disruptive Big Data technologies to firstly extract and storage, and secondly look for patterns of fraudulent behaviour in enormous amounts of unstructured and structured data. We will focus on 2 case studies: ransomware and banking Trojans.

In order to this, RAMSES brings together the latest technologies to develop an intelligent software platform, combining scraping of public and deep web, detecting manipulation and steganalysis for images and videos, tracking malware payments, extraction and analysis of malware samples and Big Data analysis and visualizations tools.

Validation pilots will take place in three different EU countries (Portugal, Belgium and Spain) being the first a mono-LEA pilot in each site and the second a collaborative investigation pilot between several LEAs.

Commercial potential will be validated during the project supported by a feasibility study to assess determinants for the adoption of the platform and appropriate business models.

Coordinator

POLITECNICO DI MILANO

Address

Piazza Leonardo Da Vinci 32
20133 Milano

Italy

Activity type

Higher or Secondary Education Establishments

EU Contribution

€ 366 967,32

Participants (10)

Sort alphabetically

Sort by EU Contribution

Expand all

Ministério da Justiça

Portugal

EU Contribution

€ 207 843,75

UNIVERSITY OF KENT

United Kingdom

EU Contribution

€ 471 487,50

RISSC - CENTRO RICERCHE E STUDI SUSICUREZZA E CRIMINALITA ASSOCIAZIONE

Italy

EU Contribution

€ 233 781,25

UNIVERSIDAD COMPLUTENSE DE MADRID

Spain

EU Contribution

€ 627 125

HOCHSCHULE FUR DEN OFFENTLICHEN DIENST IN BAYERN

Germany

EU Contribution

€ 367 225

TRILATERAL RESEARCH LTD

United Kingdom

EU Contribution

€ 246 225

TREELOGIC TELEMATICA Y LOGICA RACIONAL PARA LA EMPRESA EUROPEA SL

Spain

EU Contribution

€ 289 845,18

SERVICE PUBLIC FEDERAL INTERIEUR

Belgium

EU Contribution

€ 281 906,25

UNIVERSITAT DES SAARLANDES

Germany

EU Contribution

€ 301 593,75

MINISTERIO DEL INTERIOR

Spain

EU Contribution

€ 138 000

Project information

Grant agreement ID: 700326

Status

Ongoing project

  • Start date

    1 September 2016

  • End date

    31 August 2019

Funded under:

H2020-EU.3.7.

  • Overall budget:

    € 3 761 744,36

  • EU contribution

    € 3 532 000

Coordinated by:

POLITECNICO DI MILANO

Italy