Didn't know this forum is part of the "darkweb":
https://motherboard.vice.com/read/resea ... -web-forum
Doe's anyone have the sample from this case or any newer versions than the ones posted by GROUP-IB or kaspersky ?
"A brand-new advanced banking Trojan discovered in the wild has been named “Shifu”"
source: https://securityintelligence.com/shifu- ... nese-banks
Windows NT samples from defon talk today:
https://www.defcon.org/html/defcon-23/d ... quis-Boire
"Out of the gate, the standard of antimalware evasion is fairly high, meaning the malware’s targets would need additional controls in place (HIPS, whitelisting, sandboxing) to catch or prevent this."
Am I missing something? where is the fairly high part? UPX?