Tag Archives: Diamond Fox

Diamond Fox – part 2: let’s dive in the code

Posted on April 6, 2017 by Malwarebytes Labs

In a previous post we made an initial analysis of a Diamond Fox bot delivered by the Nebula Exploit Kit (more about the campaign can be found here). We described the way to unpack the protection layer in order to get the core, written in Visual Basic, that can be decompiled. In this second part of… Categories: Malware Threat analysis Tags: Diamond FoxEKexploit kitNebulaNebula Exploit Kit (Read more…)

The post Diamond Fox – part 2: let’s dive in the code appeared first on Malwarebytes Labs.

Continue reading Diamond Fox – part 2: let’s dive in the code→

Diamond Fox – part 1: introduction and unpacking

Posted on March 17, 2017 by Malwarebytes Labs

In this short series of posts, we will take a deep dive in a sample of Diamond Fox delivered by the Nebula Exploit Kit (described here). We will also make a brief comparison with the old, leaked version, in order to show the evolution of this product. Categories: Malware Threat analysis Tags: Diamond FoxGornychmalwareVisual BasicVisual Basic Decompiler (Read more…)

The post Diamond Fox – part 1: introduction and unpacking appeared first on Malwarebytes Labs.

Continue reading Diamond Fox – part 1: introduction and unpacking→