A forum for reverse engineering, OS internals and malware analysis 

Search found 1105 matches

 Go to advanced search

Re: Trojan SpyEye (alias Pincav)

 by rkhunter ¦  Sat Jun 25, 2011 1:35 pm ¦  Forum: Malware ¦  Topic: Trojan SpyEye (alias Pincav) ¦  Replies: 418 ¦  Views: 402618

First questions from "old school" rootkit techniques. But next questions about threads and what they doing required strongly sample analyze.

Re: Demo Rootkits

 by rkhunter ¦  Tue Jun 14, 2011 7:15 am ¦  Forum: Tools/Software ¦  Topic: Demo Rootkits ¦  Replies: 11 ¦  Views: 35292

rootkits 3

Re: Demo Rootkits

 by rkhunter ¦  Tue Jun 14, 2011 7:12 am ¦  Forum: Tools/Software ¦  Topic: Demo Rootkits ¦  Replies: 11 ¦  Views: 35292

and

Re: Demo Rootkits

 by rkhunter ¦  Tue Jun 14, 2011 7:07 am ¦  Forum: Tools/Software ¦  Topic: Demo Rootkits ¦  Replies: 11 ¦  Views: 35292

Hi, here rootkits from my collection:

Re: Rootkit TDL 3 (alias TDSS, Alureon)

 by rkhunter ¦  Mon Aug 30, 2010 8:49 am ¦  Forum: Malware ¦  Topic: Rootkit TDL 4 (alias TDSS, Alureon.DX, Olmarik) ¦  Replies: 595 ¦  Views: 641132

I'm surprised that the drivers x32 and x64 is not from one code base, to simplify porting rootkit on x32 and x64. It will be necessary to carefully analyze in IDA. Thank's for samples.

  • 1
  • 107
  • 108
  • 109
  • 110
  • 111