Clicky
Last visit was: Fri Jul 04, 2014 8:09 pm
It is currently Fri Jul 04, 2014 8:09 pm

Mebroot / Torpig / Sinowal malware - Perpetual Horizon


All times are UTC - 5 hours [ DST ]


 [ 1 post ] 
Author Message
 PostPosted: Sat Jul 24, 2010 8:17 am   
Spammers' Nightmare
User avatar

Joined: Thu Apr 05, 2007 4:10 pm
Posts: 2777
I don't know who this researcher is offhand and before recently I do not recall this Perpetual Horizon blog, but this recent blog entry has some amazing detail about mebroot malware. Some of the decoding stuff is over my head, but I find the memory analysis results this researcher posted as very interesting.

A Trip Down Memory Lane with Mebroot/Torpig
Perpetual Horizon Security Research

Quote:
These notes describe a basic analysis of a Mebroot/Torpig infection through memory dump and observation. This particular Mebroot/Torpig infection took place in Feb of 2010, and the box also contained some type of adware that may pollute the results a bit. ...


Top
 Profile  
 [ 1 post ] 

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: Ahrefs, Wayback machine and 0 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  


Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Style originally created by Volize © 2003 • Redesigned SkyLine by MartectX © 2008