hips | DataProtectionCenter.com

Gapz and Redyms droppers based on Power Loader code

19

Mar

2013

Power Loader is a special bot builder for making downloaders for other malware families and yet another example of specialization and modularity in malware production. The first time Power Loader was detected was in September 2012, using the family detection name Win32/Agent.UAW. This bot builder has been used for developing Win32/Gapz droppers (Win32/Gapz: steps of […]

Category General Written by We Live Security 0 Comments

Never Ending 0day Story

18

Sep

2012

Yesterday, it’s reported that there is an IE 0day actively exploited in the wild. We did a quick analysis and have some interesting findings.The exploit contains 4 parts: exploit.html – first stage exploiting web page (initialize variables and load the .SWF file). Moh2010.swf – encrypted SWF using DoSWF, it contains shellcode and heap spray code. […]

Category General Written by Blog Central > McAfee Labs 0 Comments

Trusted exe along with the malware

13

Apr

2012

Nowadays as more and more people are aware of malware infections, untrusted executable file is less likely to be executed by the user. Except when the executable is trusted, signed by a known company, or from a well-known software vendor for example. But even when the executable file is signed it might not be safe […]

Category General Written by AVG Blogs 0 Comments

The Latest in IT Security

Posts Tagged ‘hips’

Gapz and Redyms droppers based on Power Loader code

Never Ending 0day Story

Trusted exe along with the malware

Categories

Featured

Archives

Latest Comments

About Us

Contact Us