A forum for reverse engineering, OS internals and malware analysis 

Search found 20 matches

 Go to advanced search

Re: webcrab formgrabber

 by puzzlex ¦  Mon Oct 16, 2017 8:14 am ¦  Forum: Malware ¦  Topic: webcrab formgrabber ¦  Replies: 6 ¦  Views: 9983

coldshell wrote:A good article from @netsecurity1 about this form-grabber https://thisissecurity.stormshield.com/ ... -browsers/
I will never get why companies write articles about malware from 5 years ago.

Re: Help identify malware

 by puzzlex ¦  Tue Sep 12, 2017 9:53 am ¦  Forum: Malware ¦  Topic: Formbook Form Grabber ¦  Replies: 5 ¦  Views: 13439

Control Panel:

script.zip
It is not the full panel unfortunately, config.php missing :(
Got it from: http://www.olalimpopo.com/j0g2z5t/

Re: Help identify malware

 by puzzlex ¦  Sun Aug 27, 2017 10:12 pm ¦  Forum: Malware ¦  Topic: Formbook Form Grabber ¦  Replies: 5 ¦  Views: 13439

You rock! BIG THANK

Re: Help identify malware

 by puzzlex ¦  Fri Aug 25, 2017 2:40 pm ¦  Forum: Malware ¦  Topic: Formbook Form Grabber ¦  Replies: 5 ¦  Views: 13439

C&C 1 (not sure if there were more):

http://www.bella-bg.com/private/

Looks a nifty malware, shame they do not use SSL at this level.

Formbook Form Grabber

 by puzzlex ¦  Fri Aug 25, 2017 1:33 pm ¦  Forum: Malware ¦  Topic: Formbook Form Grabber ¦  Replies: 5 ¦  Views: 13439

Anyone recognizes?

Re: Can anybody explain me about doxware

 by puzzlex ¦  Wed Feb 15, 2017 4:15 pm ¦  Forum: Malware ¦  Topic: Can anybody explain me about doxware ¦  Replies: 2 ¦  Views: 9688

I see we have a new very enthusiastic member here :)

Re: APT question

 by puzzlex ¦  Wed Feb 15, 2017 4:13 pm ¦  Forum: Malware ¦  Topic: APT question ¦  Replies: 3 ¦  Views: 10759

That description fits any APT malware

Re: Zeus variant

 by puzzlex ¦  Sat Jan 28, 2017 10:55 am ¦  Forum: Malware ¦  Topic: Zeus variant ¦  Replies: 2 ¦  Views: 9587

Didn't know that, thanks for the info.

Zeus variant

 by puzzlex ¦  Fri Jan 27, 2017 6:13 pm ¦  Forum: Malware ¦  Topic: Zeus variant ¦  Replies: 2 ¦  Views: 9587

Fetched this today. Spent quite a time figuring out it was Zeus. Usual password.

Re: Win32/Xswkit (alias Gootkit)

 by puzzlex ¦  Thu Jun 16, 2016 6:27 pm ¦  Forum: Malware ¦  Topic: Win32/Xswkit (alias Gootkit) ¦  Replies: 61 ¦  Views: 123319