Bootkit Yurn - KernelMode.info

Bootkit Yurn

3 posts

3 posts

Bootkit Yurn

#12393 by erikloman
Thu Mar 29, 2012 12:09 pm

Looking for Rootkit.MBR.Yurn.A dropper mentioned in this blog post:
http://labs.bitdefender.com/2012/03/yur ... tionality/

Erik Loman [HitmanPro]
SurfRight B.V. - www.surfright.com

Username

erikloman

Posts

70

Joined

Sun Mar 14, 2010 8:53 am

Re: Malware Requests

#12502 by notkov
Tue Apr 03, 2012 2:02 pm

Looking for Rootkit.MBR.Yurn.A dropper mentioned in this blog post:
http://labs.bitdefender.com/2012/03/yur ... tionality/

Here it is

Attachments

1d8ea40a41988b9c3db9eff5fce3abe5.zip

password: infected
(572.21 KiB) Downloaded 220 times

Username

notkov

Posts

17

Joined

Wed Apr 28, 2010 10:40 am

Re: Bootkits

#16569 by R136a1
Sun Nov 11, 2012 5:59 pm

Seems like what Bitdefender found and named "Yurn Bootkit" earlier this year is actually a part of FinFisher's spying software (https://citizenlab.org/2012/07/from-bah ... t-exposed/):

Yurn Bootkit (Bitdefender): http://labs.bitdefender.com/2012/03/yur ... tionality/
Win32_Belesak.A (Eset): http://www.virusradar.com/en/Win32_Bele ... escription
Backdoor.Finfish (Symantec): https://www.symantec.com/security_respo ... 99&tabid=2
Trojan-Spy:W32/FinSpy.A (F-Secure): http://www.f-secure.com/v-descs/trojan- ... py_a.shtml
Trojan:Win32/Spinfy.A (Microsoft): http://www.microsoft.com/security/porta ... 2FSpinfy.A

Malware Reversing
http://www.malware-reversing.com

Username

R136a1

Rank

Forum Admin

Posts

272

Joined

Wed Jul 13, 2011 4:30 pm

Location

Netherlands

Page 1 of 1
3 posts

Return to “Malware”

Display:

Sort by:

Sort by:

Jump to: