Targeting Chinese speaking people gives you a lot of potential targets but the researcher at SANS was unsure what this malicious does. Malicious Python Script Targeting Chinese People – SANS Internet Storm Center
Hackers reuse code as well
It is a classic move of any developer to reuse code – actually it is a professional move to reuse code that you know works. So it is no surprise that hackers take professional steps to ensure their malware attacks work. Even taking legitimate code from GitHub. Code Reuse In …
A malicious script that only one AV package detected!
SANS Internet Storm is reporting on a simple, non-obfuscated batch file script that evaded detection. A Simple Batch File That Blocks People – SANS Internet Storm Centre
Notable malware of 2021 – is your scanner looking at the big files?
Here is an unusual list of things from 2021 – the most interesting malware. Do you want your Agent Tesla in the 300 MB or 8 kB package? – SANS Internet Storm The most interesting thing about this article is that some AV and malware scanners have a size limit …
Continue reading “Notable malware of 2021 – is your scanner looking at the big files?”
Old malware now new malware
Commercial software has regular updates, of course the bad guys have updates as well. Agent Tesla Updates SMTP Data Exfiltration Technique – SANS Internet Storm Centre