SEARCH RESULTS
 
Showing 1-10 of 17 records
 
Expand article

Detection Rates for Malware in the Wild

The Article has images
2008-04-30 04:58:01 by HASH0x8af6948 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Binaries Most Aggressively Spreading Malware Binaries I was particularly interested in the rankings in the "Most Effective Antivirus Tools Against New Malware Binaries" section, especially its emphasis on malware that's currently in the wild. Furthermore, to prove my point, you can see the top 10 list of Anti virus vendors as it were on the...
 
Tags: malware, signatures based malware, malware authors, source malware, malware threat center, malware binaries, binaries, vendors, vendors infrastructure
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software

The Article has images
2007-12-07 15:16:07 by HASH0x89688e0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries dispersed through the different domains are actually hosted on a single IP, and are identical Who's hosting the malware and what directory structure per campaign do they use It seems as content.onerateld.com ( 87.248.197.26 ) which is hosted at Limelight Networks is used in all the domains as the central download location. The...
 
Tags: domains portfolio, domains, portfolio, sample domains portfolio, fake security software, software, onerateld, content, exe
 
 
 
 
Expand article

Binary Analysis Seminar At UC Berkeley

2008-02-01 14:50:21 by Chris Wysopal in Zero in a bit
 
...binaries (executables), not source code. In this talk, I will present the BitBlaze project, a binary-centric approach to computer security: how we can address a wide-spectrum of different security problems by analyzing program binaries and automatically extracting security related properties from them. In particular, I will describe the two...
 
Tags: binary, binary analysis, binary-centric approach, seminar, security, real-world security, computer security, bitblaze project, dawn song
 
 
 
 
Expand article

Testing Signature-based Antivirus Products Contest

The Article has images
2008-05-02 06:31:36 by HASH0x8b205fc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries to prove that anti virus signature scanning isn't working? There's no shortage of creativity and innovation on behalf of malware authors, and in reality,the good guys are supposed to learn from the bad guys in the sense of the techniques, tools and tactics they use to achieve such a high-level degree of now automated polymorphism....
 
Tags: malware, malware authors, malware variants, signature based malware, bad guys, guys, proprietary malware tools, tools, alternative malware
 
 
 
 
Expand article

Malware Attack Exploiting Flash Zero Day Vulnerability

The Article has images
2008-05-27 17:33:43 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries already obtained, analyzed and distributed among AV vendors 117276.cn /1.exe 117276.cn /2.exe 117276.cn /3.exe woai117.cn /bing.exe Detection rates for the exploit, the obfuscations and the malware binaries obtained Sample obfuscation Scanners result : 3/32 (9.38 F-Secure - Exploit.JS.Agent.oa GData - Exploit.JS.Agent.oa Kaspersky...
 
Tags: flash, malware, macromedia flash content, flash content, sample flash file, adobe flash player, adobe, participation domains, domains
 
 
 
 
Expand article

Coding Spyware and Malware for Hire

The Article has images
2008-07-22 03:52:14 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries on a revenue sharing Here's an automatically translated, and fairly easy to understand random proposition for coding spyware and malware for hire, aiming to answer many of these questions, clearly demonstrating that today's malware is coded in exactly the same way the customer wants it to As you can see in the history of its...
 
Tags: malware, malware author, malware authors, malware binaries, malware attacks, ftp, ftp user, collects, malware industry
 
 
 
 
Expand article

Web Server Software and Malware

The Article has images
2007-06-05 09:30:00 by Niels Provos in Google Online Security Blog
...binaries or engaging in drive-by-downloads We determine server operating system by examining the 'Server:' HTTP header reported by most web servers. A survey of servers running roughly 80 million domain names reveals the web server software distribution shown below. Note that these figures may have some margin of error as it is not unusual...
 
Tags: servers serve malware, servers, apache servers, malicious servers, web server software, server software, web servers, microsoft iis, microsoft iis features
 
 
 
 
Expand article

BlackEnergy DDoS Bot Web Based C&Cs

The Article has images
2008-02-12 18:46:35 by HASH0x8b1c6c4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries that you see in the attached screenshot use one of these hosts as both the C&C and the main binary update/download location
 
Tags: ddos, bot, blackenergy ddos bot, blackenergy, ddos extortion, ddos attacks, traditional irc bot, irc, botnet master
 
 
 
 
Expand article

Serving Malware Through Advertising Networks

The Article has images
2008-02-18 10:58:53 by HASH0x8bfe2fc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...binaries and malware serving domains? Start feeding your honeyfarm, or professional interests by participating in an affiliate network -- just like pharmaceutical scammers do -- that's literally serving live exploit URLs and dropping malware in real-time Upon registering at xbanners.biz, you're enticed to IFRAME your web property, and point...
 
Tags: malware, php attempt, php, neosploit malware kit, xtraff, exploit, live exploit urls, urls, htm