signature | DataProtectionCenter.com

Update signature definitions to resolve performance issues in definitions starting with 1.141.2400.0

28

Dec

2012

Some users of Microsoft antimalware products have reported a performance issue with signature definition versions starting with 1.141.2400.0 (12/21/2012 1920 UTC). The current definition files, since 1.141.2639.0 (12/27/2012 0625 UTC), resolve this issue. If you have a signature set in the affected range, please update to the current definition files. Shannon SabensMMPC

Category General Written by Microsoft Malware Protection Center 0 Comments

Sharing the Experience of Deobfuscation for a Trojan Sample

14

Dec

2012

Thanks to the ThreatSeeker Network, we have discovered another interesting case of malicious web Trojan and analyzing experience. Let’s share the experience.The first step we should fix the malicious code position, in the red pane of following picture. Then we will do deobfuscating work. From this obfuscation, let me show you some interesting details about […]

Category Security Written by Websense 0 Comments

New Sample of Backdoor.Korplug is Signed with a Stolen Certificate

10

Aug

2012

Symantec recently received a new sample of Backdoor.Korplug that signs itself with a stolen certificate. It also made use of legitimate software, but this time there is something different from what was revealed in our previous blog entry.Figure 1. Loading sequenceFrom the data we have seen, the original executable was most likely signed by NVIDIA. […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘signature’

Update signature definitions to resolve performance issues in definitions starting with 1.141.2400.0

Sharing the Experience of Deobfuscation for a Trojan Sample

New Sample of Backdoor.Korplug is Signed with a Stolen Certificate

Categories

Featured

Archives

Latest Comments

About Us

Contact Us