Tales from Crisis, Chapter 1: The dropper’s box of tricks

From Botnets.fr
Revision as of 21:31, 5 August 2015 by Eric.freyssinet (talk | contribs) (Text replacement - " août " to " aug")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

(Publication) Google search: [1]

Tales from Crisis, Chapter 1: The dropper’s box of tricks
Botnet Crisis
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2012 / 6 aug2012
Editor/Conference osxreverser
Link http://reverse.put.as/2012/08/06/tales-from-crisis-chapter-1-the-droppers-box-of-tricks/ reverse.put.as (reverse.put.as Archive copy)
Author osxreverser
Type

Abstract

Crisis has a dropper application that is responsible for installing the backdoors, spy modules and rootkit. It’s a x86 Mach-O binary, with SHA256 checksum of 10fa7fa952dfc933b96d92ccd254a7655840250a787a1b4d9889bf2f70153791.

Bibtex

 @misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2012BFR1125,
   editor = {osxreverser},
   author = {osxreverser},
   title = {Tales from Crisis, Chapter 1: The dropper’s box of tricks},
   date = {06},
   month = Aug,
   year = {2012},
   howpublished = {\url{http://reverse.put.as/2012/08/06/tales-from-crisis-chapter-1-the-droppers-box-of-tricks/ reverse.put.as}},
 }

Retrieved from "https://www.botnets.fr/index.php?title=Tales_from_Crisis,_Chapter_1:_The_dropper’s_box_of_tricks&oldid=5687"