Malware | Threat analysis

Fileless malware: getting the lowdown on this insidious threat

August 29, 2018 - In this series of articles, we provide an in-depth discussion of fileless malware and their related attacks. In part one, we cover a brief overview of the problems with and general features of fileless malware, laying the groundwork for technical analysis of various samples employing fileless and semi-fileless methods.

Malware | Threat analysis

Spartacus ransomware: introduction to a strain of unsophisticated malware

April 30, 2018 - Spartacus ransomware is a fairly new variant seen in 2018. We'll walk you through the malware sample to analyze the code in detail, and help you learn how to get an obfuscated .NET sample into a readable state.

Malware | Threat analysis

Encryption 101: decryption tool code walkthrough

April 12, 2018 - In our final installment of the Encryption 101 series, we walk you through the source code of the Princess Locker decryption tool.

Malware | Threat analysis

Encryption 101: Decryptor’s thought process

March 27, 2018 - In this part of the encryption 101 series, we will begin wrapping it up by going into detail on a ransomware with weak encryption and walking through step-by-step the thought process of creating a decryptor for it.

Malware | Threat analysis

Encryption 101: How to break encryption

March 6, 2018 - Continuing on in our Encryption 101 series, we now look at what it takes to break encryption. In order for something as powerful as encryption to break, there needs to be some kind of weakness to exploit. That weakness is often a result of an error in implementation.