Bad guys blend!

April 6, 2012
Be it the spammers or Botnet herders, from Advanced Persistent Threats(APTs) to drive-by’s everyone and everything has a more sophisticated tools and usage these days. Things have become much harder to detect or especially remediation when even the simplest thing such as SPAMs are not just leading people directly to a website, but redirects through [...]

No Comments » | Analysis, Analytics | Permalink
Posted by DigitOnto

What is normal in generic malwares of 2011?

June 14, 2011
AndreiN was talking to me this evening about him receiving a suspicious email from a person he knows, at his school where he is currently pursuing his degree. Delivered-To: d…….@gmail.com Received: by 10.224.53.194 with SMTP id n2cs76280qag; Tue, 7 Jun 2011 15:28:17 -0700 (PDT) Received: by 10.231.152.130 with SMTP id g2mr11072412ibw.65.1307485696758; Tue, 07 Jun 2011 [...]

No Comments » | Analysis, Analytics, email, Malware, Malware Intelligence, Phishing | Permalink
Posted by DigitOnto

BlackEnergy DDoS Bot Analysis

January 17, 2011
BlackEnergy DDoS Bot Analysis: by Jose Nazario, Ph.D. (Arbor Networks) Oct 2007 – Source: http://atlas-public.ec2.arbor.net/docs/BlackEnergy+DDoS+Bot+Analysis.pdf Summary BlackEnergy is an HTTP-based botnet used primarily for DDoS attacks. Unlike most common bots, this bot does not communicate with the botnet master using IRC. Also, we do not see any exploit activities from this bot, unlike a traditional [...]

No Comments » | Analysis, Analytics, Botnet, Botnet Detection, Reverse Engineering | Permalink
Posted by DigitOnto

FireStats icon Powered by FireStats