Tag Archives: malware

ZeroAccess Rootkit Detection

Hi, A quick short overview of ZeroAccess Rootkit, The malware Propagates via Exploit packs (blackhole) and Keygens. It escalates priveliges by faking UAC for Flash Player installer where in it drops malicious dll filer in the flashplayer installer directory which … Continue reading

Posted in Uncategorized | Tagged , , | Leave a comment

Analyzing Java exploit with deobfuscating Javascript

A suspicious .class file download triggered the alert. GET /jb/kukukuk.class HTTP/1.1User-Agent: Mozilla/4.0 (Windows ) Java/1.6.0_22Host: 2374507291Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2Connection: keep-alive Now we can observed that Host is an octal host and user agent indicated java and … Continue reading

Posted in Articles, Notes, security | Tagged , , , , , | Leave a comment

How Android Apps work and how rogue apps created explained

Hi, A very nice and clear explanation of how Apps created on Android and how they are being mutated to contain rogue exploits. Recently i heard another malicous app that captures the content we speak if it matches with words … Continue reading

Posted in Articles | Tagged , | Leave a comment

Installed Dionaea

Woosh.. Finally installed Dionaea honepot on Ubuntu 10.1. It took 1 hour to install everything.. Despite having heavy dependencies it installed in very smooth manner. Surprised to see installing on linux without errors, I never had luck in the past. … Continue reading

Posted in security | Tagged , , | Leave a comment