A forum for reverse engineering, OS internals and malware analysis 

All off-topic discussion goes here.
 #16872  by Xylitol
 Tue Nov 27, 2012 7:46 pm
https://www.virustotal.com/file/b1ee43f ... 354044819/
TR/Crypt.XPACK.Gen,Trojan.Crypt,Win32.Malware.Heur_Generic.B.(kcloud),WS.Reputation.1,TROJ_GEN.R47H1KO
For just another ExitProcess:
Code: Select all
00401000 >/$  6A 00         PUSH 0                                   ; /ExitCode = 0
00401002  \.  FF15 40204000 CALL DWORD PTR DS:[402040]               ; \ExitProcess
 #17948  by secObs
 Thu Jan 31, 2013 3:54 pm
From http://www.nytimes.com/2013/01/31/techn ... =all&_r=2&

Over the course of three months, attackers installed 45 pieces of custom malware. The Times — which uses antivirus products made by Symantec — found only one instance in which Symantec identified an attacker’s software as malicious and quarantined it, according to Mandiant.

A Symantec spokesman said that, as a matter of policy, the company does not comment on its customers.

I thought that a "big" network like NY Times had a better client security than a simple AV.