A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #19999  by dumb110
 Sun Jul 07, 2013 6:23 am
Thank for the analysis EP_XOFF :)

I got those samples from USB by sharing it with my friend who is infected currently,today I will be probably going to cleanse his machine off,I will post here if I find anything interesting.

I checked the detection of desktop.ini file with virustotal and to my suprise Emsisoft didnt detect it but avast did ;)

Thanks again!
 #20548  by p4r4n0id
 Tue Aug 20, 2013 9:09 pm
SomeUnusedName wrote:And another researcher fell for its fake backdoor: http://joe4security.blogspot.ch/2013/08 ... wrong.html
sample attached
Attachments
pwd: infected
(16.54 KiB) Downloaded 103 times
  • 1
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13