payload | DataProtectionCenter.com

Hide and seek with site injections

11

Nov

2011

As we have seen many times before (e.g. Mal/Iframe-Gen, Mal/Iframe-W), compromised sites are frequently injected with large, heavily obfuscated blocks of JavaScript. The primary goal of such scripts is to make it hard for scanners to detect the payload (typically an iframe or script load). However, the side effect of large, ugly, obfuscated scripts is […]

Category General Written by Naked Security - Sophos 0 Comments

MSRT Nov’ 11: Cridex – the hex of Skidlo

11

Nov

2011

Earlier, we discussed Win32/Carberp, a malware family included in the November release of the Malicious Software Removal Tool. In this post, we discuss another included malware, Win32/Cridex. Win32/Cridex is a relatively new family; we discovered its first variant in the wild in August 2011. This trojan is primarily downloaded and installed by other malware, detected […]

Category General Written by Microsoft Malware Protection Center 0 Comments

MSRT November ’11: Carberp

09

Nov

2011

We included three threat families in the November edition of the Microsoft Malicious Software Removal Tool – Win32/Carberp, Win32/Cridex and Win32/Dofoil. In this post, we discuss Win32/Carberp. The first variant of Win32/Carberp was discovered early last year. This malware has evolved from a trojan downloader that downloads an additional password stealer, such as PWS:Win32/Ldpinch, to […]

Category General Written by Microsoft Malware Protection Center 0 Comments

The Latest in IT Security

Posts Tagged ‘payload’

Hide and seek with site injections

MSRT Nov’ 11: Cridex – the hex of Skidlo

MSRT November ’11: Carberp

Categories

Featured

Archives

Latest Comments

About Us

Contact Us