Profile cover photo
Profile photo
MalwareTech
1,360 followers -
Malware Analysis, Security News, Reverse Engineering.
Malware Analysis, Security News, Reverse Engineering.

1,360 followers
About
Posts

Post has attachment
Add a comment...

Post has attachment
Add a comment...

Post has attachment
Add a comment...

Post has attachment
Add a comment...

Post has attachment
Add a comment...

Post has attachment
What's Happening with Necurs, Dridex, and Locky?
Around the 8th of June VICE picked up the story about Necurs' downtime and wrote a great article including a tweet from Kevin Beaumont referencing my botnet tracker. I was contacted for comment and there's a few things i'd have liked to add but at the time ...
Add a comment...

Post has attachment
How Cerber's Hash Factory Works
Recently I saw a story on SecurityWeek  about how the Cerber ransomware morphs every 15 seconds (each download results in a file with a new has), which I then tracked back to the source, this article by Invincea. The initial article made some dubious claime...
Add a comment...

Post has attachment
Infosec Without a Degree
I've seen plenty blogs from people who got into infosec through the academic route, so i figured I'd cover the other side and try to answer the three most asked questions I get via email and twitter: "Do I need a degree to get a job in infosec?", "Will a de...
Add a comment...

Post has attachment
Dridex Updates Payload Distribution
Dridex spreads mainly using Office documents containing malicious macros, initially the primary stage would involve using VBA (Visual Basic for Applications) to download and execute the loader from one of multiple servers, though this had some flaws. Antivi...
Add a comment...

Post has attachment
Let's Analyze: Dridex (Part 3)
Sorry for the longer than expected delay, occasionally the Dridex group will take the servers offline during the weekend and resume normal operations on Monday; however, it appears they decided to take an extended break as the network went offline at some p...
Add a comment...
Wait while more posts are being loaded