Archive for the 'Malware Analysis' Category

• May 12, 2009 Decode: eval_gzinflate_base64_decode posted in HOWTO's, Information Security, Malware Analysis, Malware Techniques, Reverse Engineering, Web Security tagged eval gzinflate base64, php decode, web sec, Web Security
• March 12, 2009 Whats all fuss about PIFTS.exe? posted in General Talks, Information Security, Malware Analysis, Virtualization tagged Norton Patch, PATCH021809DB, PIFTS.exe, Symantec
• February 15, 2009 My Encounter with Live Web Attack posted in General Talks, HOWTO's, Information Security, Malware Analysis, Malware Techniques, Security Tools, Web Security tagged De-obfuscation, Decode malicious JavaScript, iFrame injections, Rhino, Web attacks, web based malware, Web Security
• February 13, 2009 Analyzing IRCBots III posted in Information Security, Malware Analysis, Malware Techniques, Reverse Engineering, Virtualization, Virus Signature tagged Malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen, W32/Spybot.worm.gen, W32/Spybot-Fam, 59a95f668e1bd00f30fe8c99af675691, testirc1.sh1xy2bg.NET, IRC bots, Anti Virus Signature, Code patching, Winsec32.exe, ClamAV Signature Generation, sigtool, Malware Removal Tool, Registry C#, processes C#
• February 10, 2009 Analyzing IRCBOTS: Part II posted in Information Security, Malware Analysis, Malware Techniques, Reverse Engineering, Virtualization tagged Malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen, W32/Spybot.worm.gen, W32/Spybot-Fam, 59a95f668e1bd00f30fe8c99af675691, testirc1.sh1xy2bg.NET, IRC bots, Anti Virus Signature, Code patching, Winsec32.exe
• February 4, 2009 Analyzing IRCBOTS: Part I posted in Information Security, Malware Analysis, Malware Techniques, Reverse Engineering, VMWare, Virtualization tagged Malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen, W32/Spybot.worm.gen, W32/Spybot-Fam, 59a95f668e1bd00f30fe8c99af675691, testirc1.sh1xy2bg.NET, IRC bots, Anti Virus Signature, Code patching, Winsec32.exe