Malware Analysis Reports

Tip: Type # to search tags, or click on tags in reports to filter
Grid List
Showing 20 of 305 reports (Page 15 of 16)
Sort by:

Decoding Guide for CookieBomb's (as Front-end) Latest Threat, with Evil ESD.PHP Redirection (as the Back-end)

2013-11-08

MalwareMustDie

Author: unixfreaxjp

file_types:bin file_types:so file_types:go file_types:php file_types:c file_types:javascript techniques:obfuscation

MMD-0010-2013 - Wordpress Hack Case: Site's Credential Stealer

2013-11-05

MalwareMustDie

Author: unixfreaxjp

file_types:go file_types:php file_types:c malware_types:backdoor file_types:javascript techniques:obfuscation

MMD-0009-2013 - JS/RunForrestRun DGA "Comeback" with new obfuscation

2013-11-02

MalwareMustDie

Author: unixfreaxjp

file_types:html techniques:code injection file_types:python file_types:so file_types:php malware_types:virus file_types:javascript file_types:js platforms:debian techniques:obfuscation

MMD-0008-2013 - What's Behind the #w00tw00t (PHP) Attack

2013-10-21

MalwareMustDie

Author: unixfreaxjp

file_types:zip platforms:linux file_types:txt file_types:bin file_types:php file_types:img platforms:ubuntu platforms:centos file_types:css file_types:iso

MMD-0007-2013 - KINS? No! PowerZeuS, yes!

2013-10-10

MalwareMustDie

Author: unixfreaxjp

file_types:dll file_types:exe malware_types:loader malware_types:botnet file_types:php malware_types:virus malware_types:trojan malware_families:zeus file_types:cpp malware_types:dropper

MMD-0006-2013 - Rogue 302-Redirector "Cushion Attack"

2013-09-21

MalwareMustDie

Author: unixfreaxjp

techniques:code injection file_types:so file_types:go file_types:php

MMD-0005-2013 - A Leaked Malvertisement, Cutwail+BHEK & Triple Payloads of "Syria Campaign"

2013-09-09

MalwareMustDie

Author: unixfreaxjp

file_types:zip techniques:honeypot malware_types:botnet file_types:so malware_types:downloader file_types:php file_types:javascript malware_types:trojan platforms:windows cve:cve-2013-0422

MMD-0004-2013 - "You hacked.. we cracked" - "WP Super Cache" & Glazunov EK

2013-08-02

MalwareMustDie

Author: unixfreaxjp

file_types:zip file_types:html file_types:so file_types:go file_types:php file_types:javascript malware_types:trojan file_types:jar file_types:java cve:cve-2013-1493

MMD-0003-2013 - First "comeback" of the .RU RunForrestRun's DGA

2013-07-23

MalwareMustDie

Author: unixfreaxjp

file_types:so file_types:php file_types:c file_types:javascript file_types:js techniques:obfuscation

What is behind #CookieBomb attack? (by @malm0u53)

2013-07-23

MalwareMustDie

Author: unixfreaxjp

file_types:html techniques:code injection file_types:so file_types:php file_types:c file_types:javascript file_types:js platforms:centos file_types:iso malware_types:clicker

Some Decoding note(s) on modified #CookieBomb attack's obfuscated injection code

2013-07-21

MalwareMustDie

Author: unixfreaxjp

file_types:html file_types:so file_types:go file_types:php file_types:javascript techniques:obfuscation

MMD-0002-2013 - How Cutwail and other SpamBot can fool (spoof) us?

2013-07-19

MalwareMustDie

Author: unixfreaxjp

file_types:zip file_types:pe file_types:exe techniques:honeypot malware_types:botnet file_types:so file_types:php malware_types:trojan malware_families:zeus file_types:xml

MMD-0001-2013 - Proof of Concept of "CookieBomb" code injection attack

2013-07-17

MalwareMustDie

Author: unixfreaxjp

file_types:bin file_types:html techniques:code injection file_types:so file_types:go file_types:php file_types:javascript file_types:js file_types:java file_types:css

MMD-0000-2013 - Malware Infection Alert on Plesk/Apache Remote Code Execution zeroday

2013-06-07

MalwareMustDie

Author: unixfreaxjp

file_types:bin malware_types:botnet file_types:so file_types:php malware_types:backdoor malware_types:zero-day cve:cve-2012-1823

Full disclosure of 309 Bots/Botnet Source Codes Found via Germany Torrent

2013-06-03

MalwareMustDie

Author: unixfreaxjp

malware_types:ransomware file_types:rar file_types:zip malware_types:worm file_types:php malware_types:virus file_types:c malware_types:backdoor malware_families:zeus malware_types:spyware

Just another story of UNIX Trojan Tsunami/Kaiten.c (IRC/Bot) w/ Flooder, Backdoor at a hacked xBSD case

2013-05-30

MalwareMustDie

Author: unixfreaxjp

file_types:ruby platforms:linux file_types:bin file_types:sh file_types:elf malware_types:downloader file_types:bash malware_types:virus malware_types:backdoor file_types:iso

CNC analysis of Citadel Trojan Bot-Agent - Part 2

2013-04-25

MalwareMustDie

Author: unixfreaxjp

file_types:dll file_types:bin malware_types:botnet file_types:so file_types:go file_types:php malware_types:trojan platforms:windows techniques:sandbox file_types:json

CNC analysis of Citadel Trojan Bot-Agent - Part 1

2013-04-08

MalwareMustDie

Author: unixfreaxjp

file_types:dll file_types:bin file_types:exe file_types:html malware_types:downloader file_types:php malware_types:virus malware_types:trojan malware_types:dropper malware_types:spyware

The Evil Came Back: Linux/Darkleech's Apache Malware Module

2013-03-24

MalwareMustDie

Author: unixfreaxjp

platforms:linux file_types:html file_types:python file_types:elf malware_types:downloader file_types:php malware_types:virus malware_types:backdoor file_types:javascript techniques:privilege escalation

CVE-2013-0634 This "Lady" Boyle is not a nice Lady at all

2013-02-10

MalwareMustDie

Author: unixfreaxjp

file_types:dll file_types:pe file_types:sh malware_types:virus malware_types:backdoor file_types:javascript architecture:x64 cve:cve-2013-0634 platforms:windows server cve:cve-2013-0633
Previous
Showing 20 of 305 reports (Page 15 of 16)
Next