Hugo Caron · @y0ug
83 followers · 45 posts · Server infosec.exchangeFinally, my research on Gracewire and a P2P malware that used the same VFS.
https://blog.codsec.com/posts/malware/gracewire_adventure/
https://github.com/y0ug/gracewire_research/
After so long, this took way more time than expected to compile my notes and scripts.
A lot of python scripts, some @qiling too
@RolfRolles@twitter.com post https://www.msreverseengineering.com/blog/2021/3/2/an-exhaustively-analyzed-idb-for-flawedgrace was a saver, thank you.
#malware #malwareanalysis #threatintel #qiling #gracewire #flawedgrace
#malware #malwareanalysis #threatintel #qiling #gracewire #flawedgrace
Hugo Caron · @y0ug
83 followers · 45 posts · Server infosec.exchange
I'm trying to get my note together on Gracewire, so I can post about the VFS it used and the P2P botnet using the same VFS. That was in February this year, not sure if it's still up, I'm trying to ping some old nodes 🤞. #malware #gracewire #p2p #vfs #malwareanalysis #threatintel
#malware #gracewire #p2p #vfs #malwareanalysis #threatintel
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Evil Corp Returns With New Malware Infection Tactic - Researchers have observed the cybercrime group back in action, now using a new tactic for distribu... more: https://threatpost.com/evil-corp-returns-with-new-malware-infection-tactic/152430/ #maliciousexceldocument #vulnerabilities #htmlredirector #phishinggroup #websecurity #infostealer #cybercrime #gracewire #microsoft #evilcorp #trojan #hacks #excel
#excel #hacks #trojan #evilcorp #microsoft #gracewire #cybercrime #infostealer #websecurity #phishinggroup #htmlredirector #vulnerabilities #maliciousexceldocument