Posts Tagged ‘raw data’

Digging Into the Nitol DDoS Botnet

Apr

2012

Nitol is a distributed denial of service (DDoS) botnet that seems to be small and not widely known. It mostly operates in China. McAfee Labs recently analyzed a few samples; we offer here the communications protocol and the Trojan’s capabilities.Most of the samples we encountered were not packed and were very easy to reverse engineer. […]

Category General Written by Blog Central > McAfee Labs 0 Comments

Server-side Polymorphic Android Applications

Feb

2012

For quite some time, we have observed the technique of server-side polymorphism being used to infect Windows computers around the world. What this means is that every time a file is downloaded, a unique version of the file is created in order to evade traditional signature-based detection. We are now seeing this same technique being […]

Category General Written by Symantec Security Response Blog 0 Comments

A tale of grannies, Chinese herbs, Tom Cruise, Alureon and steganography

Sep

2011

I’ve been monitoring the development of a particular strain of Alureon since the start of August this year. The installer (detected as Trojan:Win32/Alureon.FE – cc9a8000f80b6aecee30375e3277292a725acbfb) is easily distinguishable from more prevalent strains such as Trojan:Win32/Alureon.DX by the use of PE resources to store each component. This particular installer is often downloaded by variants of Trojan:Win32/Fakesysdef […]

Category General Written by Microsoft Malware Protection Center 0 Comments

The Latest in IT Security

Posts Tagged ‘raw data’

Digging Into the Nitol DDoS Botnet

Server-side Polymorphic Android Applications

A tale of grannies, Chinese herbs, Tom Cruise, Alureon and steganography

Categories

Featured

Archives

Latest Comments

About Us

Contact Us