Category Archives: English

Analysis of Tobfy (Ransomware)

Posted on September 30, 2012 by evild3ad

-In Progress- Tobfy is a ransomware that prevents you from accessing your desktop by covering the desktop with a certain image. Note: The image contains fake instructions and misleading information about a ransom that you need to pay to regain … Continue reading

Posted in BKA-Trojaner, English, Ransomware | Comments Off

Reveton.C - Landing Pages

Posted on August 4, 2012 by evild3ad

Reveton.C DE (06-2012) Reveton.C US (06-2012) Reveton.C IT (06-2012) Reveton.C ES (06-2012) Reveton.C FR (06-2012) Reveton.C UK (06-2012) Reveton.C GR (06-2012) Reveton.C BE (06-2012) Reveton.C NL (06-2012) Reveton.C AT (06-2012) Reveton.C FI (06-2012) Reveton.C CA (06-2012)

Posted in BKA-Trojaner, English, Malware Forensics, Ransomware, Reveton | Leave a comment

How to install Volatility on Ubuntu 12.04 LTS

Posted on July 1, 2012 by evild3ad

Updated 2012-09-09 1.) Installing SVN and Basic Dependencies # apt-get install subversion pcregrep libpcre++-dev python-dev -y 2.) Installing Distorm3 # wget http://distorm.googlecode.com/files/distorm-package3.1.zip # unzip distorm-package3.1.zip # cd distorm3 # python setup.py build # python setup.py build install # cd .. … Continue reading

Posted in English, Memory Forensics, Volatility | 1 Comment

Sinowal analysis (Windows 7, 32-bit)

Posted on March 3, 2012 by evild3ad

Sinowal (also known as Torpig or Anserin) is constant one of the top banking trojan all over the world since 2006. So I asked myself, why is there so little info on the web? Just found old articles, that’s why … Continue reading

Posted in Banking Trojan, English, Malware Forensics, Phishing, Sinowal | 3 Comments

Federal Trojan aka R2D2 (Dropper)

Posted on October 28, 2011 by evild3ad

Download:

Posted in English, IT Security, Malware Forensics | Leave a comment