Recently, we came across JS_VIRTOOL which uses certain Javascript techniques so that encrypted code may not be decrypted and analyzed by a malware analyst.
Here is how this is done:
It retrieves the URL where the malicious script is located.
It retrieves its own function and adds the string of the URL.
It computes the CRC of the function [...]
Post from: TrendLabs | Malware Blog – by Trend Micro
Not all botnets are organized in the same way. That’s the conclusion of a report from Damballa which seeks to categorize the dominate structures. It attempts to explain why certain types of blocking and filtering will work against some botnets, and not for others.
Following the sudden and shocking death of The King of Pop, Senior Threat Researcher Loucif Kharouni reports that a slew of malicious links related to Michael Jackson’s last moments in the hospital before his death are now being proliferated in the wild via the instant messaging (IM) application, MSN. Below is a sample screenshot of [...]
Post from: TrendLabs | Malware Blog – by Trend Micro
June 26th, 2009 Posted by Dancho Danchev @ 11:56 amCategories:Anti Virus, Botnets, Browsers, Hackers, Malware, Passwords, Phishing, Spam and Phishing, Web 2.0Tags:Malware, Social Engineering, Spam, Michael Jackson, Malware Campaign, Dancho Danchev, Spyware, Adware & Malware, E-mail, Viruses And Worms, SecurityThe sudden death of Michael Jackson quickly opened a window of opportunity for cybercriminals to capitalize on. With a malicious spam campaign, blackhat SEO search results poisoning
Cybercriminals take the low road once again as they pepper the Internet with blackhat SEO links that are likely to attract users searching for news about the death of Charlie’s Angels star Farrah Fawcett, who, at age 62, finally ended a long struggle with cancer.
Figure 1. Blackhat SEO links for Farrah Fawcett searches sets in
Hosted [...]
Post from: TrendLabs | Malware Blog – by Trend Micro
