Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Good malware reversing article from Websense - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Good malware reversing article from Websense
Here is a good article from the Websense labs folks.  Apparently, a large bank in Norway has been fighting a massive infection of this malware.  The binary has multiple levels of advanced techniques that prevent against reversing.  If you want to get a peek inside some malware authors tricks (if properly motivated and educated), then this is a good article to read.
Kyle

112 Posts
Mar 13th 2007

Sign Up for Free or Log In to start participating in the conversation!