Trojan clicker’s gaze cast upon Google Play store

We’ve discovered a Trojan clicker on the Google Play store doing far more than advertised. The app name in Turkish is “Mayis Guzel Aydir”, which roughly translates to “May is a Beautiful Month”. Clicker App / When you open the app, the full-screen eyeball gives off a definite 2001: A Space Odyssey vibe.

Read more

De-obfuscating malicious Vbscripts

With the returned popularity of visual basic as a first attack vector in mind, we took a look at de-obfuscating a few recent vbs files starting with a very easy one and progressing to a lot more complex script.

Read more

Trojan.DNSChanger circumvents Powershell restrictions

We take a close look at the functionality of a new variant of the DNS-changer adware family. Especially the use of encoded scripts as a way to bypass the Powershell execution protection.

Read more

Skype Hacking Tool: A Sting in the Tail

Resist the temptation to try out this so-called “Skype Hacking Tool” or you may get more than you bargained for.

Read more

[update] Shopperz alters dnsapi.dll

We have a closer look at an adware that patches the Windows dnsapi.dll file to hijack your browsers.

Read more

Select your language