A forum for reverse engineering, OS internals and malware analysis 

Search found 1105 matches

 Go to advanced search

Re: Winnti backdoor

 by rkhunter ¦  Sun Oct 18, 2015 6:19 am ¦  Forum: Malware ¦  Topic: Winnti backdoor ¦  Replies: 6 ¦  Views: 10345

Re: Winnti backdoor

 by rkhunter ¦  Tue Oct 06, 2015 11:31 am ¦  Forum: Malware ¦  Topic: Winnti backdoor ¦  Replies: 6 ¦  Views: 10345

I've attached bootkit dropper, mentioned here https://securelist.com/analysis/publica ... ot-part-1/
Haven't played with it.

MD5: 2c85404fe7d1891fd41fcee4c92ad305
SHA1: 4c3171b48d600e6337f1495142c43172d3b01770
SHA256: a9a8dc4ae77b1282f0c8bdebd2643458fc1ceb3145db4e30120dd81676ff9b61

Re: The NT Insider: March/April 2013 Issue

 by rkhunter ¦  Mon Aug 31, 2015 8:50 am ¦  Forum: Kernel-Mode Development ¦  Topic: The NT Insider: July/August 2015 Issue ¦  Replies: 7 ¦  Views: 28054

Re: Hacking Team RCS and other tools

 by rkhunter ¦  Sat Jul 11, 2015 12:36 pm ¦  Forum: Malware ¦  Topic: Hacking Team RCS and other tools ¦  Replies: 12 ¦  Views: 15308

A Overview of Hacking Team’s Leaked Data

http://translate.wooyun.io/2015/07/09/A ... -Data.html

Re: Hacking Team RCS and other tools

 by rkhunter ¦  Fri Jul 10, 2015 11:03 am ¦  Forum: Malware ¦  Topic: Hacking Team RCS and other tools ¦  Replies: 12 ¦  Views: 15308

Re: Undocumented structures for W2k-Win7

 by rkhunter ¦  Thu Apr 30, 2015 10:42 am ¦  Forum: Kernel-Mode Development ¦  Topic: Undocumented structures for W2k-Win10 ¦  Replies: 21 ¦  Views: 74942

ntoskrnl 10.0.10074.1 types & structures (header file) .

Re: Enhanced Mitigation Experience Toolkit (EMET)

 by rkhunter ¦  Sat Mar 21, 2015 5:22 pm ¦  Forum: Tools/Software ¦  Topic: Enhanced Mitigation Experience Toolkit (EMET) ¦  Replies: 12 ¦  Views: 47155

Re: Enhanced Mitigation Experience Toolkit (EMET)

 by rkhunter ¦  Sat Mar 21, 2015 5:21 pm ¦  Forum: Tools/Software ¦  Topic: Enhanced Mitigation Experience Toolkit (EMET) ¦  Replies: 12 ¦  Views: 47155

Re: Point-of-Sale malwares / RAM scrapers

 by rkhunter ¦  Sat Mar 21, 2015 5:17 pm ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 864426

PoSeidon, A Deep Dive Into Point of Sale Malware

http://blogs.cisco.com/security/talos/poseidon

Re: SNOWGLOBE/Babar

 by rkhunter ¦  Fri Mar 06, 2015 9:26 am ¦  Forum: Malware ¦  Topic: SNOWGLOBE/Babar ¦  Replies: 3 ¦  Views: 3539

Casper Malware: After Babar and Bunny, Another Espionage Cartoon

http://www.welivesecurity.com/2015/03/0 ... e-cartoon/

  • 1
  • 3
  • 4
  • 5
  • 6
  • 7
  • 111