Posts by admin

Preventsweating.com infected by Incognito Exploit Kit

Our honeypot has logged an infected website: hxxp://www.preventsweating .com The malicious javascript code is at the end of the page: Download dumped content (pass is novirusthanks.org): exploit.zip / 1 KB We have analyzed the infected website with our sandbox and we can see from the network traffic that the obfuscated javascrip...
Continue reading...

Phishing: Update your PayPal account Information

We have detected new phishing emails with subject “Update your PayPal account Information” that contain fake PayPal link that redirects to a phishing page used to steal PayPal account details of users that type their credentials. Email header: Subject: Update your PayPal account Information Date: Mon, 16 Jan 2012 00:...
Continue reading...

Karn!v0r3x v1.0 Exploit Kit

There is a new exploit kit in the wild, this time named Karn!v0r3x v1.0: Html code of the login page: <html> <head> <title>Karn!v0r3x v1.0 [Inicio]| Malandrines .n3t</title> <script language="JavaScript" src="files/fallt.js"></script> <style> body{background:black;col...
Continue reading...

Lock your PC with Smart PC Locker Pro

Smart PC Locker Pro is a lightweight and powerful application designed to lock your computer and all its functions so that no one can access your personal data, you can now move away from the PC safely. The program locks the entire system and it disables the task manager and all CD-ROM drives, so that […]
Continue reading...

Dump SAM Files and System32\Config Directory with Fast Raw File Copier

Fast Raw File Copier Pro easily allows you to copy files while showing progress percentages as well as the ability to copy files which generally cannot be copied through traditional means in the Windows OS. An example of a file which cannot be copied due to built-in Windows OS protection is the SAM file which […]
Continue reading...

MalwareHash.com SDK

We have made available to our users the SDK to use our API service. Users can download the SDK from their Dashboard: Documentation of the SDK: ////////////////////////////////////////////////////////////////////////////// /////////////////// MalwareHash Function Definitions //////////////////////// //////////////////////////////...
Continue reading...

Malwarehash.com: Free API key with 50 queries

We have recently included a link “Free API Key” in the service api.malwarehash.com: Every new user that register to the service, can make use of this option. When the link “Free API Key” is clicked, it will generate an API key with 50 free queries that can be used for testing the service or for […]
Continue reading...

Integrate Antivirus Scanner Ikarus T3 with EXE Radar Pro

Download EXE Radar Pro and install it. Download Ikarus T3 (T3 VDB + T3 Commandline Scanner): http://updates.ikarus.at/updates/update.html Extract ikarust3scan.exe in: C:\AVs\Ikarus\ Place there also t3sigs.vdb. Now open EXE Radar Pro and click the [TAB] Behavioral. Open the [TAB] Custom Scanners. Put a check in Enable Custom Sca...
Continue reading...

Malware: UPS notification

We have received another fake UPS email containing an infected ZIP archive: Report date: 2011-08-13 18:11:14 (GMT 1) File name: ups-document-zip File size: 13203 bytes MD5 hash: 7d481195826b6e056d5dab4bfb6f58c0 SHA1 hash: ee3eb7fdca41b5c088fcd342fcf9223edf5cdf34 Detection rate: 3 on 5 (60%) Status: INFECTED AVG 13/08/2011 10.0.0...
Continue reading...