Tag Archives: rootkit

ZeroAccess Rootkit Detection

Hi, A quick short overview of ZeroAccess Rootkit, The malware Propagates via Exploit packs (blackhole) and Keygens. It escalates priveliges by faking UAC for Flash Player installer where in it drops malicious dll filer in the flashplayer installer directory which … Continue reading

Posted in Uncategorized | Tagged , , | Leave a comment

How easy to hide virus in NTFS

How do we identify malware hooked into a legitimate file? When hooked – the file size changes, functionality might differ. However, NTFS provide a feauture ADR (Alternate Data Stream) where we can hook any executable binary (say trojan) into any … Continue reading

Posted in security | Tagged , , | Leave a comment