[kmd]

overall flame is interesting piece of malware, puzzle, no doubt
but this marketing hype from kaspersky is ><

there is rumor this kaspersky global butthurt (EK hysterics and apocapypce 2012 edition) caused by their marketing fuckup with flashback malware earlier this year.

[360Tencent]

http://www.securelist.com/en/blog/20819 ... oxy_server

http://www.isssource.com/breaking-down-flames-roots/

http://blogs.technet.com/b/srd/archive/ ... lware.aspx

[notkov]

browse32.ocx

[frame4-mdpro]

browse32.ocx

Thanks -- for those who get archive corrupted message, rename .7z to .zip and it works -- pass : infected ;)

[rkhunter]

You can find all hashes here http://artemonsecurity.blogspot.com/201 ... s-itw.html

[rkhunter]

Flamer droppers collection (MSSECMGR.OCX):

MD5: 37c97c908706969b2e3addf70b68dc13
http://www.kernelmode.info/forum/viewto ... 530#p13530

MD5: bdc9e04388bda8527b398a8c34667e18
http://www.kernelmode.info/forum/viewto ... =20#p13503

And 3 others with smaller size in attach.

0a17040c18a6646d485bde9ce899789f
b51424138d72d343f22d03438fc9ced5
e5a49547191e16b0a69f633e16b96560

[dumb110]

anybody who can find this for me please
https://www.virustotal.com/file/029bcd7 ... /analysis/

thanks!

[tachion]

anybody who can find this for me please
https://www.virustotal.com/file/029bcd7 ... /analysis/

thanks!

if you please :)

[bclough]

Seems flame is rather interesting after all.
http://www.informationweek.com/news/sec ... picks=true

[360Tencent]

http://www.securelist.com/en/blog/20819 ... ssing_link