The Latest in IT Security

Posts Tagged ‘relocation’

Recently we experimented with our generic unpacking heuristics. Our goal was to unpack a potentially malicious binary and dump the executable from memory to a file. During our experiments we saw a few unknown packers from which we successfully unpacked the binary; with these, however, we dumped the memory but we missed some code in […]

Read more ...

Recently, we discovered a new parasitic infection virus in the wild – Win32/Floxif – which specifically targets DLL files. Most of the attacks of this threat have been observed to come from a specific geographic region. Win32/Floxif replaces 5 bytes at the entry point of the infected file with a jmp instruction, which jumps directly […]

Read more ...

The new variant of W32.Xpaj is in the wild which uses Entry Point Obfuscation (EPO) technique to infect the Windows executable files. This variant is one of the most complex polymorphic infector seen till date. It overwrites any random subroutine from executable with its own code and redirects few call instructions to point to its […]

Read more ...


Categories

SATURDAY, MAY 30, 2020
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments