Irshad Muhammad – WindowsTechs.com

Increased Use of a Delphi Packer to Evade Malware Classification

Posted on September 20, 2018 by Threat Research Blog

Introduction
The concept of “packing” or “crypting” a
malicious program is widely popular among threat actors looking to
bypass or defeat analysis by static and dynamic analysis tools.
Evasion of classification and detection is an arms race in wh… Continue reading Increased Use of a Delphi Packer to Evade Malware Classification→

APT10 Targeting Japanese Corporations Using Updated TTPs

Posted on September 13, 2018 by Threat Research Blog

Introduction
In July 2018, FireEye devices detected and blocked what appears to
be APT10 (Menupass) activity targeting the Japanese media sector.
APT10 is a Chinese cyber espionage group that FireEye has tracked
since 2009, and they have a histor… Continue reading APT10 Targeting Japanese Corporations Using Updated TTPs→

A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan

Posted on May 14, 2018 by Threat Research Blog

As discussed in previous
blogs, exploit kit activity has been on the decline since the
latter half of 2016. However, we do still periodically observe
significant developments in this space, and we have been observing
interesting ongoing activit… Continue reading A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan→