Lost your password?

Blogs about: Malware Techniques

Featured Blog

Unlock Registry Editor, Task Manager and Folder Options

Many of the computer users have the habit to download and use online games or check out latest screen savers. Most of them use torrents to download such softwares or movies. This habit could lead to l… more →

Bughira's Weblog

Unlock Registry Editor, Task Manager and Folder Options2 comments

bughira wrote 4 months ago: Many of the computer users have the habit to download and use online games or check out latest scree … more →

Tags: Information Security, Howtos, unlock registry, task manager, Folder Options

Decode: eval_gzinflate_base64_decode

bughira wrote 6 months ago: If you follow my posts….sometime back i wrote about the my encounter with web attacks which wa … more →

Tags: Information Security, Reverse Engineering, Malware Analysis, Howtos, Web Security, Web Security, eval gzinflate base64, php decode, web sec

My Encounter with Live Web Attack4 comments

bughira wrote 9 months ago: It will not be an average day, I knew from the dawn, as EOD I will be on my way to Pune. You might t … more →

Tags: Information Security, General Talks, Malware Analysis, Security Tools, Howtos, Web Security, Web Security, Web attacks, iFrame injections

Analyzing IRCBots III2 comments

bughira wrote 9 months ago: Here I am for the third and final installment of our 3 installment post: Analyzing IRCBots. In the f … more →

Tags: Information Security, Reverse Engineering, virtualization, Malware Analysis, virus signature, malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen

Analyzing IRCBOTS: Part II1 comment

bughira wrote 9 months ago: OK we know from previous post that malware is trying to connect testirc1.sh1xy2bg.NET. To learn more … more →

Tags: Information Security, Reverse Engineering, virtualization, Malware Analysis, malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen, W32/Spybot.worm.gen

Analyzing IRCBOTS: Part I4 comments

bughira wrote 10 months ago: IRC based malware bots caught enormous attention in 2005-06. Though existence of IRC based Malwares … more →

Tags: Information Security, Reverse Engineering, virtualization, Malware Analysis, VMware, malware analysis, W32.Spybot, Win32.Spybot.gen, Worm.P2P.SpyBot.gen

W32.WaleDac Analysis2 comments

bughira wrote 10 months ago: Since Jan20th 2009, a worm named W32.Waledac is a culprit for sending spam emails.  People found rep … more →

Tags: Information Security, Reverse Engineering, General Talks, onlyYou.exe, obamanes.exe, barackblog.exe, W32.waledac, email-virus, malware analysis

Silently install malware using IExpress.2 comments

bughira wrote 10 months ago: Now you have your Malware  ready and want it to get executed on victim machines. While doing so you … more →

Tags: Information Security, General Talks, Install Malware, iexpress, Create Installer

Karmetasploit: Another feather in Metasploit Hat

bughira wrote 1 year ago: Metasploit is rocking again and this time with Wireless hacking. After getting Best of open source s … more →

Tags: Information Security, General Talks, Metasploit, karma, Karmetasploit

Limbo 2 Trojan defeats Symantec, Mac Afee:

bughira wrote 1 year ago: You must of seen lot of post about different Trojans that claims to defeat AV solutions. All these s … more →

Tags: Information Security, General Talks, trojan, Limbo 2

Execute programs at windows startup

bughira wrote 1 year ago: My Last post was related to the ADS technology adopted by viruses and rootkits. These viruses can im … more →

Tags: Information Security, Alternate Data Streams, Ads, Win.ini, winstart.bat, filetype association

Alternate Data Streams (ADS)

bughira wrote 1 year ago: With the introduction of NTFS file system in Windows NT, Microsoft introduced new concept of having … more →

Tags: Information Security, Alternate Data Streams, NTFS File System, Malware Technology, Rootkits


Have your say. Start a blog.

See our free features →

Related Tags
All →

Follow this tag via RSS