dropper
Malicious doc “builders” abandon old exploits wholesale
Credit to Author: Gabor Szappanos| Date: Tue, 11 Sep 2018 16:15:26 +0000
A key piece of the malware ecosystem adopts new vulnerabilities, and scraps old exploits, in record time<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/gKMCGkmvrcQ” height=”1″ width=”1″ alt=””/>
Read moreI am invisible – Monero (XMR) Miner
Credit to Author: Ghanshyam More| Date: Mon, 03 Sep 2018 10:27:58 +0000
From the last one year, Quick Heal Security Labs has been observing a boost in the number of mining malware. Nowadays malware authors are using mining as a replacement for Ransomware to make money. Recently Quick Heal Security Labs came across a malware which mines Monero(XMR). This miner has many…
Read moreProcess Doppelgänging meets Process Hollowing in Osiris dropper
Credit to Author: hasherezade| Date: Mon, 13 Aug 2018 18:29:57 +0000
 | |
| Process doppleganging, a rare technique of impersonating a process, was discovered last year, but hasn’t been seen much in the wild since. It was an interesting surprise, then, to discover its use mixed in with Process Hollowing, yet another technique, in a dropper for the Osiris banking Trojan. Categories: Tags: dropperkronososirisOsiris dropperprocess dopplegangingtrojan |
The post Process Doppelgänging meets Process Hollowing in Osiris dropper appeared first on Malwarebytes Labs.
Read moreOsiris dropper found using process doppelgänging
Credit to Author: hasherezade| Date: Thu, 09 Aug 2018 18:52:57 +0000
| |
| Process doppleganging, a rare technique of impersonating a process, was discovered last year, but hasn’t been seen much in the wild since. It was an interesting surprise, then, to discover its use in a dropper of the Osiris banking Trojan. We unpack the code to show how malware authors used this process. Categories: Tags: dropperkronososirisOsiris dropperprocess dopplegangingtrojan |
The post Osiris dropper found using process doppelgänging appeared first on Malwarebytes Labs.
Read more