Christopher Elisan – WindowsTechs.com

Blank Slate: A Tale of Two Malware Servers

Posted on June 19, 2017 by Christopher Elisan

In March 2017, Palo Alto Networks Unit 42 published research on a new malicious spam campaign dubbed “Blank Slate.” Named as such because the malspam message is empty. Only the malicious attachment is present, as seen in Figure 1. Figure 1: Blank Slate malspam e-mail Recently, Blank Slate struck deploying Cerber ransomware once again, affording…

The post Blank Slate: A Tale of Two Malware Servers appeared first on Speaking of Security – The RSA Blog.

Continue reading Blank Slate: A Tale of Two Malware Servers→

Why Malware Installers Use TMP files and The Temp folder when infecting Windows

Posted on April 6, 2017 by Christopher Elisan

Ever wonder why there are too many TMP files detected on an infected system? Even if they have different names, the file are exact copies of one another, why? The first thing a malware installer (first stage of infection) does when executed on a target system – be it a dropper or downloader – is…

The post Why Malware Installers Use TMP files and The Temp folder when infecting Windows appeared first on Speaking of Security – The RSA Blog.

Continue reading Why Malware Installers Use TMP files and The Temp folder when infecting Windows→