campaigns | DataProtectionCenter.com

PlugX: New Tool For a Not So New Campaign

11

Sep

2012

Earlier this year, a new breed of Remote Access Tool (RAT) called Plugx (also known as Korplug) surfaced in the wild. PlugX, reportedly used on limited targeted attacks, is an example of custom-made RATs developed specifically for this purpose. The idea behind using this new tool is simple: less recognition and more elusiveness from security […]

Category General Written by TrendLabs 0 Comments

FedEx spam / dushare.net and gsigallery.net

08

Sep

2012

Two fake FedEx campaigns today, with a format similar to the one found here but with different payload sites of dushare.net and gsigallery.net In the first case, the malicious payload is at [donotclick]dushare.net/main.php?page=c82ec1c8d6998cf0 (report here) hosted on 203.91.113.6 (G Mobile, Mongolia). In the second case the payload is at [donotclick]gsigallery.net/main.php?page=2bfd5695763b6536 (report here) also hosted on […]

Category Security Written by Dynamoo's Blog 0 Comments

Win32/Gataka banking Trojan – Detailed analysis

13

Aug

2012

Win32/Gataka is an information-stealing banking Trojan that can read all of your web traffic and alter the balance displayed on your online banking page to hide fraudulent transfers. It exhibits a modular architecture similar to that of SpyEye, where plugins are required to achieve most of the malware functionality. In our previous blog post, we […]

Category General Written by ESET ThreatBlog 0 Comments

The Latest in IT Security

Posts Tagged ‘campaigns’

PlugX: New Tool For a Not So New Campaign

FedEx spam / dushare.net and gsigallery.net

Win32/Gataka banking Trojan – Detailed analysis

Categories

Featured

Archives

Latest Comments

About Us

Contact Us