win32 | DataProtectionCenter.com

Malware signed with the Adobe code signing certificate

04

Oct

2012

Last week, Adobe released an advisory (APSA12-01) announcing the upcoming revocation of an Adobe code signing certificate as it was compromised and used to sign at least two malicious utilities. They identified a compromised build server that required access to the code signing infrastructure and have forensic evidence that links it to the signing of […]

Category General Written by Microsoft Malware Protection Center 0 Comments

MSRT September ’12 – Medfos, hijacking your daily search

11

Sep

2012

In this month’s Microsoft Malicious Software Removal Tool (MSRT) release, we add Win32/Medfos. This is a fairly new family, but it is continuously gaining big detection numbers around the world, especially in the United States. The initial Win32/Medfos infection is usually a downloader component that is distributed in different ways; for example, by visiting a […]

Category General Written by Microsoft Malware Protection Center 0 Comments

An Int 13 trick from the new Wapomi sample

09

Aug

2012

It’s quite common for bootkit malware to modify the Master Boot Record (MBR), Volume Boot Record (VBR) and even BIOS but we were unaware of anything more innovative.Last week however, we found a new bootkit sample in China, which appeared to be a bit different from other bootkits. It behaved abnormally in its MBR’s 512 […]

Category General Written by AVG Blogs 0 Comments

The Latest in IT Security

Posts Tagged ‘win32’

Malware signed with the Adobe code signing certificate

MSRT September ’12 – Medfos, hijacking your daily search

An Int 13 trick from the new Wapomi sample

Categories

Featured

Archives

Latest Comments

About Us

Contact Us