Search found 1104 matches

by rkhunter
Sun Oct 02, 2016 9:44 am
Forum: Malware
Topic: Linux/Mirai
Replies: 11
Views: 20242

Re: Linux/Mirai

MMD-0056-2016 - Linux/Mirai, how an old ELF malcode is recycled.. ~ http://blog.malwaremustdie.org/2016/08/mmd-0056-2016-linuxmirai-just.html Frankly speaking, I'm really glad to see that he started to do something directly related to his work, besides war with windmills, "approve" ppl in own twitt...
by rkhunter
Tue Jul 12, 2016 11:33 am
Forum: Reverse Engineering and Debugging
Topic: Question about Windows 10/8.1 booting process
Replies: 0
Views: 8096

Question about Windows 10/8.1 booting process

Guys, can anyone point me resources which describe subj? Interesting early loading steps, before execution flow pass to ntoskrnl.
by rkhunter
Thu Jun 02, 2016 1:29 pm
Forum: Malware
Topic: Necurs - another x64 rootkit
Replies: 70
Views: 90348

Re: Necurs - another x64 rootkit

Necurs Botnet has over 1 Million infected Bots

http://blog.anubisnetworks.com/blog/mon ... he-iceberg
by rkhunter
Fri Apr 22, 2016 6:30 am
Forum: Reverse Engineering and Debugging
Topic: ObRegisterCallbacks functions list
Replies: 2
Views: 9881

Re: ObRegisterCallbacks functions list

Ok, thx for the info. I've already solved my problem with workaround. :)
by rkhunter
Thu Apr 21, 2016 5:36 pm
Forum: Reverse Engineering and Debugging
Topic: ObRegisterCallbacks functions list
Replies: 2
Views: 9881

ObRegisterCallbacks functions list

Guys, can u recommend for me an ARK to check list of callbacks registered with subj?
by rkhunter
Mon Apr 11, 2016 11:04 am
Forum: Malware
Topic: Linux/Mumblehard
Replies: 1
Views: 4032

Re: Linux/Mumblehard

Mumblehard takedown ends army of Linux servers from spamming

http://www.welivesecurity.com/2016/04/0 ... -spamming/
by rkhunter
Mon Apr 11, 2016 11:02 am
Forum: Malware
Topic: iOS malware
Replies: 2
Views: 6554

Re: iOS malware

XcodeGhost (F-Secure: Backdoor:iPhoneOS/XCodeGhost.A, Sophos: iPh/XcdGhost-A, Symantec: OSX.Codgost, ESET: iOS/XcodeGhost)

http://researchcenter.paloaltonetworks. ... app-store/
In attach.