Security Hero Rotating Header Image

Posts Tagged ‘Packed’

Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs

Bugtraq: PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs URL: http://www.securityfocus.com/archive/1/503800

Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs

PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs <!– Envelope-to: email@address Delivery-date: Mon, 25 May 2009 21:27:50 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M8gly-0007Hw-9E for email@address; Mon, 25 May 2009 21:27:50 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id DBED2236FD1; Mon, 25 May [...]

Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs

PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs Posted by Piotr Bania on May 25 ABSTRACT Nowadays most of the malware applications are either packed or protected. This techniques are applied especially to evade signature based detectors and also to complicate the job of reverse engineers or security analysts. The time one must spend [...]

The Sims 3 Leaked Two Weeks Before Its Launch

The Sims 3 Leaked Two Weeks Before Its Launch It caníŽt get any better than this for gamers: The Sims 3 video game has been leaked on torrents two weeks before its official release. This is just unbelievable, as a few weeks ago, the an unfinished version of the Wolverine movie was leaked on torrents [...]

Microsoft Security Bulletin for May 2009

Microsoft Security Bulletin for May 2009 The table below lists the Microsoft vulnerabilities for May. MS Bulletin Number Microsoft Bulletin Title Severity Impact of Vulnerability Affected Software CVE ID MS09-017 Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (967340) Critical Remote Code Execution Microsoft Office 2009-0220 2009-0221 2009-0222 2009-0223 2009-0224 2009-0225 2009-0226 2009-0227 [...]

4005

4005 JS/TrojanDownloader.Iframe.NDX, Win32/Adware.Antivirus2008, Win32/Adware.Coolezweb, Win32/Adware.NewWeb (2), Win32/Adware.SystemSecurity, Win32/Agent.WPI, Win32/Autoit.CL, Win32/AutoRun.IRCBot.V, Win32/Packed.Crpak.Gen, Win32/PSW.OnLineGames.NMP (2), Win32/PSW.OnLineGames.NMY (4), Win32/TrojanClicker.VB.NFM, Win32/TrojanDownloader.VB.NXG (2), Win32/Waledac.IT (5), Win32/Waledac.IU URL: http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5938&Itemid=26

6661 (bitdefender_antivirus)

CVE-2008-6661 (bitdefender_antivirus) Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed (1) NeoLite and (2) ASProtect packed PE file. URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6661

WMF!sd6, Packed.Generic.181..

Mal/Behav-009, Trojan.Win32.StartPage, Exploit.IMG-WMF!sd6, Packed.Generic.181.. URL: http://www.threatexpert.com/report.aspx?md5=d7638903e602c080eed9130a5c7d3d5f

Packed.Generic.202, Vundo.gen.w, Troj/Virtum-Gen, Trojan:Win32/Vundo.gen!BB..

Packed.Generic.202, Vundo.gen.w, Troj/Virtum-Gen, Trojan:Win32/Vundo.gen!BB.. URL: http://www.threatexpert.com/report.aspx?md5=4be7fb3ea1584dc7ee732a04e2ac127f

Trojan-Dropper.Vb, Backdoor.ProRAT.K, Trojan.TDss, Packed.Generic.202..

Trojan-Dropper.Vb, Backdoor.ProRAT.K, Trojan.TDss, Packed.Generic.202.. URL: http://www.threatexpert.com/report.aspx?md5=7fa61f8b1ed99c1699c431790b990d36

Infostealer, Packed.Win32.Krap.c, Mal/EncPk-FH, Backdoor:Win32/Bifrose.AE..

Infostealer, Packed.Win32.Krap.c, Mal/EncPk-FH, Backdoor:Win32/Bifrose.AE.. URL: http://www.threatexpert.com/report.aspx?md5=a4fb655c5f9bf7ab68261c584637d5c7

Mal/TibsPk-A, Trojan.Spammer, Packed.Generic.209, Trojan.Win32.Inject.qwd, New..

Mal/TibsPk-A, Trojan.Spammer, Packed.Generic.209, Trojan.Win32.Inject.qwd, New.. URL: http://www.threatexpert.com/report.aspx?md5=a156bccc0b8bd1ca1ce3810a4e79f82b

W32.Harakit, Packed.Win32.Klone.bj, Worm:AutoIt/Renocide.gen!A

W32.Harakit, Packed.Win32.Klone.bj, Worm:AutoIt/Renocide.gen!A URL: http://www.threatexpert.com/report.aspx?md5=e025b36629d5ce396fffe658b9a8ba38

Packed.Win32.Krap.i, Spam-Mailbot.h.gen.a, Spammer:Win32/Tedroo.A..

Packed.Win32.Krap.i, Spam-Mailbot.h.gen.a, Spammer:Win32/Tedroo.A.. URL: http://www.threatexpert.com/report.aspx?md5=e03ec08c6068edc43d4e0aac119250ac

Packed.Generic.209, Trojan-Downloader.Win32.Agent.bmrg, Generic.dx..

Packed.Generic.209, Trojan-Downloader.Win32.Agent.bmrg, Generic.dx.. URL: http://www.threatexpert.com/report.aspx?md5=e28b7cfec3df1c7ce3e0977ef6588db0

Bad Behavior has blocked 352 access attempts in the last 7 days.