Posts Tagged ‘dropper’

The Powerloader 64-bit update based on leaked exploits

Aug

2013

A few months ago on this blog I described PowerLoader functionality including an interesting way for privilege escalation into the explorer.exe system process. The leaked PowerLoader code is also used in other malware families. For example the Win32/Gapz dropper is based on leaked PowerLoader code. In August 2013 we have tracked a new modification of […]

Category General Written by We Live Security 0 Comments

Linux Trojan “Hand of Thief” ungloved

Aug

2013

A new threat for the Linux platform was first mentioned on August 7th by RSA researchers, where it was dubbed Hand of Thief. The two main capabilities of this Trojan are form-grabbing of Linux-specific browsers and entering a victim’s computer by a back-door. Moreover, it is empowered with features like anti-virtualization and anti-monitoring. With the […]

Category General Written by Avast! blog 0 Comments

The evolution of Ronvix: Private TCP/IP stacks

Jul

2013

We recently discovered a new breed of the bootkit Rovnix that introduces a private TCP/IP stack. It seems this is becoming a new trend for this type of malware.The implementation of the private stack is based on an open-source TCP/IP project and it can be accessed from both kernel and user modes.It works like this: […]

Category General Written by Microsoft Malware Protection Center 0 Comments

The Latest in IT Security

Posts Tagged ‘dropper’

The Powerloader 64-bit update based on leaked exploits

Linux Trojan “Hand of Thief” ungloved

The evolution of Ronvix: Private TCP/IP stacks

Categories

Featured

Archives

Latest Comments

About Us

Contact Us