Just adding this here as a heads up to keep watch over. Necurs has built itself out as a lucrative vehicle to deliver Locky ransomware and Dridex banking malware, along with an effective Spam campaign.
What is interesting is that DDoS destroys the bots in the army, which would not serve the interests of those running Necurs. We know that cybercrime really is an ideal model of business efficiency.
Nonetheless, we need to keep watch over Necurs, and be aware of all its capabilities. Cuz pivots happen. Fast. And this year my prediction is we are going to see banking malware do what ransomware did last year.