Hi folks,
attached are some samples of a .NET malware.
Info:
http://www.symantec.com/security_respon ... 99&tabid=2
No obfuscation, C&C server is only Base64 encoded.
One more C&C Server:
myapp.no-ip.biz
Samples:
https://www.virustotal.com/en/file/1d11 ... /analysis/
https://www.virustotal.com/en/file/7cd4 ... /analysis/
https://www.virustotal.com/en/file/7e9a ... /analysis/
https://www.virustotal.com/en/file/78f7 ... /analysis/
https://www.virustotal.com/en/file/503d ... /analysis/
https://www.virustotal.com/en/file/4158 ... /analysis/
https://www.virustotal.com/en/file/a9c2 ... /analysis/
https://www.virustotal.com/en/file/bb83 ... /analysis/
attached are some samples of a .NET malware.
Info:
http://www.symantec.com/security_respon ... 99&tabid=2
No obfuscation, C&C server is only Base64 encoded.
One more C&C Server:
myapp.no-ip.biz
Samples:
https://www.virustotal.com/en/file/1d11 ... /analysis/
https://www.virustotal.com/en/file/7cd4 ... /analysis/
https://www.virustotal.com/en/file/7e9a ... /analysis/
https://www.virustotal.com/en/file/78f7 ... /analysis/
https://www.virustotal.com/en/file/503d ... /analysis/
https://www.virustotal.com/en/file/4158 ... /analysis/
https://www.virustotal.com/en/file/a9c2 ... /analysis/
https://www.virustotal.com/en/file/bb83 ... /analysis/
Attachments
PW: infected
(107.31 KiB) Downloaded 60 times
(107.31 KiB) Downloaded 60 times
Malware Reversing
http://www.malware-reversing.com
http://www.malware-reversing.com
