[SANS ISC] The UPX Packer Will Never Die!

I published the following diary on isc.sans.edu: “The UPX Packer Will Never Die!“: Today, many malware samples that you can find in the wild are “packed”. The process of packing an executable file is not new and does not mean that it is de-facto malicious. Many developers decide to pack

The post [SANS ISC] The UPX Packer Will Never Die! appeared first on /dev/random.

Continue reading [SANS ISC] The UPX Packer Will Never Die!

Encryption Utility Firm Accused of Bundling Malware Functions in Product

The increasingly prevalent GuLoader malware has been traced back to a far-reaching encryption service that attempts to pass as above-board. Continue reading Encryption Utility Firm Accused of Bundling Malware Functions in Product

The Emotet-ion Game (Part 3)

This blog is a continuation of our blog series on the Emotet banking Trojan. So far, we have analysed Emotet’s delivery mechanism and its behaviour through dynamic analysis. The host and network data captured from Emotet found that it escalates i… Continue reading The Emotet-ion Game (Part 3)

Azure VM Image Builder Makes Customization of ISO and Marketplace Images Easier


Azure VM Image Builder is a new tool for Microsoft’s cloud that lets you provision ISO or Azure Marketplace images with your own customizations, like security settings or installed software.

The post Azure VM Image Builder Makes Customization of ISO and Marketplace Images Easier appeared first on Petri.

Continue reading Azure VM Image Builder Makes Customization of ISO and Marketplace Images Easier

Automating Red Team Homelabs: Part 1 – Kali Automation

Homelab infrastructure got you down? Well, not anymore! This is the first post of a 3-part series that will talk about how to automate your home lab, from your kali box to all your vulnerable and domain-joined test vms. It will teach you how to keep yo… Continue reading Automating Red Team Homelabs: Part 1 – Kali Automation

New Neutrino Bot comes in a protective loader

We take another look at the Neutrino bot, known for its diverse feature set ranging from snooping on victims to performing DDos attacks. This latest version includes a hardened protective layer aimed at defeating sandboxes and hiding the bot from disc… Continue reading New Neutrino Bot comes in a protective loader