Cimbot – A Technical Analysis
Personal Exposition I was recently sent a .pcap file of a bot’s C&C communications. Every 182 seconds, the bot would download a GIF file from vazasaki-ji.info (91.211.65.180 as of Mar 11, 2009)....
View ArticleFilefix Professional 2009 Cryptanalysis
Background http://www.fireeye.com/research/2009/03/a-new-method-to-monetize-scareware.html http://voices.washingtonpost.com/securityfix/2009/03/antivirus2009_holds_victims_do.html Exposition The...
View ArticleCryptanalysis of VSCrypt Ransomware and the Control Sum Cript Algorithm v1.0
Introduction I was recently sent an email by someone who was hit with a new species of ransomware. This one encrypted all of the documents on the system, attached the extension .vscrypt to the end,...
View ArticleClik here to view.
Black Energy Crypto
Introduction Black Energy has been in the news again recently (well, it was recent back when I wrote the first draft of this). I’m not here to talk about Citigroup, I’m here to talk about...
View Article
