Group-IB experts together with ESET and LETA conducted the first study of the state of the computer crime market in the post-Soviet space. Group-IB is positioning itself as the only organization in Russia capable of investigating IT crimes commissioned by commercial companies (of course, on a paid basis), so they are supposed to issue such reports by occupation.

The report is an economic analysis of the market, that is, the cybercrime sector is considered as an example of a classic market, which has market pricing, monopolies, competition, etc.

Group-IB experts estimate the financial turnovers of the global computer crime market over the past year at $ 7 billion dollars, while criminals from the CIS receive revenues of $ 2.5 billion, that is, here the CIS countries control more than a third of the world market. For the current year, the growth of earnings of domestic attackers is projected to $ 3.7 billion.
')
The report lists current prices that are now in effect on the black market for criminal services.

Botnets

1. Purchase of malicious software used on botnet sites: $ 3,000–10,000;
2. Encryption of executable files of a malicious program to make it difficult for antivirus to detect this program: $ 20–30;
3. Server rental for managing botnet center. As a rule, the so-called “bulletproof” hosting providers are used, which are loyal to the presence of managing servers of bot networks on their sites: from $ 150–200.

Profit extraction from the generated botnets is as follows:

• the provision of DDoS services and blackmail with the threat of DDoS attacks (average price of a DDoS attack: $ 70–90 per day of attacks according to open source ads, $ 300–500 per day of attacks according to ads on closed resources; the difference in prices appears due to differences in the quality of DDoS services and the complexity of typical tasks);
• using fraud in remote banking services (RBS) systems: unlawful sending of electronic payment orders for large sums of money, their withdrawal (“bay”) and legalization (the average damage from such incidents is from $ 70 thousand to $ 100 thousand);
• via spamming: providing spamming services using e-mail address databases and instant messaging programs, as well as spamming services in social networks (the price of an e-mail database of 1 million addresses is $ 500-1,000, the cost of a thousand accounts in social networks for sending spam - $ 30-50).

Sales downloads

Botnet owners install customer-provided programs on zombie PCs.

Typical prices for services for the sale of 1000 downloads:

Region	Price
Asia	10–12 dollars
South America	10–12 dollars
USA	100-140 dollars
Europe	70–130 dollars
Russia	20-40 dollars

Selling traffic

Traffic can be sold in the form of sales of web pages to attract visitors to various sites (drug stores, porn sites, etc.) or to increase the number of visitors with vulnerable versions of web browsers accessing exploit pages that lead to downloads and running malware on user computers (including those used to create botnets). Selling visits to web pages is often associated with hacking into popular Internet portals, on which pages the code is redirected that redirects the visitor’s browser to the customer’s page for selling services. Hacked Internet portals are sold as resources with established shells (scripts for remote control of the system): the average cost of ten shells is from $ 900 to $ 3000.

Partner programs and black pharmaceutical business

The black pharmaceutical business consists in the resale of counterfeit medicines and medicines, the implementation of which is legally regulated (medicines are obtained from larger online stores or sold directly through partner programs). The existence of the pharmaceutical business is based on the advertising of Viagra, steroids and other medicines by sending spam, using black promotion methods (black SEO) and attracting visitors to online stores by buying traffic described above.

Spam mailing on the basis of 10 million addresses costs about $ 350-1500. According to this scheme, you can organize any type of illegal business.