Increased Use of a Delphi Packer to Evade Malware Classification

Introduction
The concept of “packing” or “crypting” a
malicious program is widely popular among threat actors looking to
bypass or defeat analysis by static and dynamic analysis tools.
Evasion of classification and detection is an arms race in wh… Continue reading Increased Use of a Delphi Packer to Evade Malware Classification

APT10 Targeting Japanese Corporations Using Updated TTPs

Introduction
In July 2018, FireEye devices detected and blocked what appears to
be APT10 (Menupass) activity targeting the Japanese media sector.
APT10 is a Chinese cyber espionage group that FireEye has tracked
since 2009, and they have a histor… Continue reading APT10 Targeting Japanese Corporations Using Updated TTPs

A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan

As discussed in previous
blogs, exploit kit activity has been on the decline since the
latter half of 2016. However, we do still periodically observe
significant developments in this space, and we have been observing
interesting ongoing activit… Continue reading A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan