Archive for the ‘ Virus Signature ’ Category
Understanding CVE-2010-1885 exploit from Blackhole exploitkit.
A friend of mine reported receipt of suspicious email to me. It turned out to be a nice opportunity to analyze one more client side attack from the bag of BlackHole exploit kit. Attacker was not at all funky this time, no fancy stuff in the email, just a plain email with an external link. Below is the email [...]
Lawsuit notice: Social Engineering Attack
Yesterday, I got an email saying some company has filed a lawsuit against me in court with the link to download a word file supposed to be containing copyright law violations. As expected it turned out to be a very sophisticated social engineering attack. When I downloaded the file and scan in virustotal, very few [...]
Analyzing IRCBots III
Here I am for the third and final installment of our 3 installment post: Analyzing IRCBots. In the first post I showed you a static and behavioural analysis while in then second post we saw Code patching and analysis. We also conclude the behavior of the malware and categorized it under IRC bot. Those who [...]
