Threat analysis – Page 16 – WindowsTechs.com

Window Range Manager

Posted on July 20, 2016 by Pieter Arntz

A recently discovered adware called Window Range Manager aka Winrange uses Chrome components to display 3D advertisements, but fails to run on most systems.Categories: PUPs
Threat analysisTags: adsMalwarebytesPUPs(Read more…) Continue reading Window Range Manager→

Third time (un)lucky – improved Petya is out

Posted on July 18, 2016 by Malwarebytes Labs

Petya’s authors got it right at the third attempt. The currently launched wave of this ransomware finally seems to have the proper Salsa20.Categories: Malware
Threat analysisTags: Mischapetyaransomware(Read more…) Continue reading Third time (un)lucky – improved Petya is out→

Untangling Kovter’s persistence methods

Posted on July 14, 2016 by Malwarebytes Labs

Kovter is a click-fraud malware famous from the unconventional tricks used for persistence. It hides malicious modules in PowerShell scripts as well as in registry keys to make detection and analysis difficult. In this post we will take a deep dive into the techniques used by it’s latest samples to see all the elements and…

Categories:

Tags: click fraud kovter

PUP Friday: One Click, Many Downloads

Posted on July 8, 2016 by Jovi Umawing

Files that Malwarebytes Anti-Malware (MBAM) detect as OneClickDownloader are what we call bundlers. We have defined bundlers as a blend of programs that are bunched up together to be installed with a main program, which is usually what users desire to … Continue reading PUP Friday: One Click, Many Downloads→

Satana ransomware – threat coming soon?

Posted on June 29, 2016 by Malwarebytes Labs

Petya ransomware is quickly becoming a household name and in typical cyber-criminal fashion, copycat families are starting to emerge including the ransomware called Satana.Categories: Malware
Threat analysisTags: ransomwareSatana(Read more…) Continue reading Satana ransomware – threat coming soon?→

Malware uses Google Talk used to make malicious phone calls

Posted on June 20, 2016 by Nathan Collier

We found a new piece of mobile malware using Google Talk to make your phone make unwarranted and malicious outgoing calls.Categories: Mobile
Threat analysisTags: AndroidGoogle TalkMobiletrojan(Read more…) Continue reading Malware uses Google Talk used to make malicious phone calls→

Android Trojan FakeApp masquerading as legitmate

Posted on June 15, 2016 by Nathan Collier

A variant of Android/Trojan.FakeApp is stealing the identities of popular applications (apps) such as TrueCaller and Torque Pro. As soon as the FakeApp is installed a shortcut with an icon stolen from one of these popular apps is created, and a notific… Continue reading Android Trojan FakeApp masquerading as legitmate→

zCrypt Ransomware: under the hood

Posted on June 14, 2016 by Malwarebytes Labs

Ransomware has become the new norm for cyber-criminals. Every week there are fresh ransomware threats with new functionalities and improvements. zCrypt ransomware has recently showed an interesting method of spreading not usually used by ransomware.Cat… Continue reading zCrypt Ransomware: under the hood→