Uncategorized

Beautifying the webinjects of Gootkit

Beautifying the webinjects of Gootkit At first glance, Gootkit's webinjects may look like a messy bulk of binary data. But there is an easy way to decode them very nicely in just a matter of seconds. In this short article…

Leer más

COBALT ATTACKS IN THE WILD

Recently, our analyst team had come across a suspicious email coming from a Russian sender with the following information: Subject: Блокировка интернет ресурса Sender: info@roskomnadzor.info Attached File: Wire problems.doc The Microsoft Word (MD5: c2c753f440314d1ec88c1569aa845ac2) was indeed a Microsoft Office RTF…

Leer más

Bulk spam campaign for Dalexis+CTB-Locker

Campaign In the last few days a bulk spam campaign has been detected distributing Dalexis malware downloader. Below this lines you will find a screenshot taken from one of the spam mails. Email attached files are compressed files with the extensions…

Leer más

The Dexter trojan

Dexter is a well known trojan, it is oriented to steal credit card information in the POS systems. Despite samples of its earlier versions were spotted in December 2012, a new version known as Dexter v2 or Stardust was discovered…

Leer más

Collaboration for a More Secure Europe

I hope by the time you are reading this blog post you will have already heard about the European Cyber Security Group for those of you that have not read about this new alliance let me give you a very…

Leer más

A YEAR OF FRAUD (PART I)

The New Year is the ideal time to present a summary of all that we have seen during 2011. The data that we will present here is related to fraud incidents closed by S21sec's SOC/CERT. We have acted on 4759…

Leer más

New SpyEye Campaign with mobile complement

More than a year ago we saw for the first time how ZeuS had incorporated a mobile component in an attempt to steal the SMS sent by the banks while making a transfer. Later, SpyEye incorporated the same technique.Recently, we…

Leer más

Murofet: Changing to zlib

Time passes and in the world of malware new threats continue to emerge, but the established threats still continue to evolve and everything points to this continuing.In this blog, we will once again talk about Zeus and, in particular, the…

Leer más