[evild3ad]

Hello,

I'm looking for some newer indepth reports about the trojan 'Torpig'.
Here's the best report I've found: http://www.tidos-group.com/blog/?p=362

This report looked mainly at the 'Torpig' sample with MD5 of 70675a7053ae38adb77d70a056956684, first seen on April 10, 2011.
http://www.threatexpert.com/report.aspx ... a056956684
http://www.virustotal.com/file-scan/rep ... 1302476190

Can anybody help? Thx in advance.

Best regards
evild3ad

[Xylitol]

Hello,

I'm looking for some newer indepth reports about the trojan 'Torpig'.
Here's the best report I've found: http://www.tidos-group.com/blog/?p=362

This report looked mainly at the 'Torpig' sample with MD5 of 70675a7053ae38adb77d70a056956684, first seen on April 10, 2011.
http://www.threatexpert.com/report.aspx ... a056956684
http://www.virustotal.com/file-scan/rep ... 1302476190

Can anybody help? Thx in advance.

Best regards
evild3ad

FFS there is a request thread.

[Maxstar]

I'm looking for a sample of Theola.

Win32/Theola.F (CRX plugin): 0a74c1897a8a3a56cbc4bd433e100e63f448c136
Win32/Theola.D (dll module): 5591d013f38f64f2695366ff4cb4727c94a266e9

How Theola malware uses a Chrome plugin for banking fraud
http://www.welivesecurity.com/2013/03/1 ... ecurity%29

[Xylitol]

Attached
https://www.virustotal.com/fr/file/2d81 ... 363422064/
https://www.virustotal.com/fr/file/c874 ... 363422065/

[EP_X0FF]

Theola is the ESET name of Win32/Sinowal component. Posts merged.

edit:
Split again.

[MountFranklin]

Hello,

Anyone has a recent torpig sample, we need to understand more about this malware as it is currently targeting our brands. I would also appreciate if you could lead me to any recent resources dissecting this malware.

Thank you very much in advance.

Regards,
Frank

[thisisu]

Hi Frank,

http://www.kernelmode.info/forum/viewto ... 100#p19564

June 6th