[Linkcabin]

New DDoS bot from Russia.

Virus Total: https://www.virustotal.com/en/file/660c ... 387627444/

Packed with UPX 3.09 and decryption of strings are quite easy. Coded in delphi when unpacked (As far as I know).

[Xylitol]

This is not new and it's mainly based on N0PE Systems.
i guess you refer to this http://news.softpedia.com/news/Trojan-F ... 0796.shtml

Code: Select all

The threat was first identified by a security researcher from Malwared.ru, who posted a picture of the threat’s command and control (C&C) panel on Twitter.

bullshit, the threat was first identified on vx.vault, malware was downloaded from a zeus if i remember, i saw that on cuckoo.

[Linkcabin]

Checked out these decryption scripts these guys give and they work on most of the encryption. All keys I found were in plain text which I thought was funny.

http://www.arbornetworks.com/asert/2013 ... f-ferrets/

This is not new and it's mainly based on N0PE Systems.
i guess you refer to this http://news.softpedia.com/news/Trojan-F ... 0796.shtml

Code: Select all

The threat was first identified by a security researcher from Malwared.ru, who posted a picture of the threat’s command and control (C&C) panel on Twitter.

bullshit, the threat was first identified on vx.vault, malware was downloaded from a zeus if i remember, i saw that on cuckoo.

Correct the panel is from N0PE but the bin isn't.