Introducing the Vínsula Security Blog
Thank you for visiting the Vínsula security blog. We will use this space to publish announcements regarding our development, technical analysis of malware, elements of our platform, and to discuss...
View ArticleThe Social Engineering Behind a Malware Campaign
Many of you have experienced phishing attacks, which often come in the form of attempts to illicitly gather personal information by impersonating a person or organization that is a known entity to the...
View ArticleCVE-2013-0640 – Further Investigation into an Adobe PDF Zero-day Malware Attack
Our colleagues from FireEye recently discovered a zero-day malware attack which made use of an exploit for Adobe as described in and article titled “Adobe Investigating Reports of Reader Zero-Day...
View ArticleTrojan.Malaria.13001– New Adobe PDF Trojan Malware Found
Yesterday our colleagues from Sophos reported a new piece of Trojan malware titled Troj/ZBot-EUM. The attack delivers a ZIP file which contains an executable. Our investigation shows that the Trojan we...
View ArticleTrojan.Malaria.13002 – Malware Behavioral Signature Analysis
Given the widespread continued use of spear phishing campaigns, it generally wise to approach any emails containing attachments or links to archives with a heavy dose of caution—especially when the...
View ArticleTrojan.Plague.13604.B – Behavioral Signature Analysis of Mutopy Malware using...
A critical part of recent malware binaries is the executable component responsible for downloading the actual malware from a designated malware server. Our colleague, security researcher Mila Parkour,...
View ArticleHunting Down FTP Password Stealer Malware with Vinsula Execution Engine
Malware authors are getting increasingly creative in their attempts to bypass security controls and gain access to critical information by using tools such as password stealer malware to steal...
View ArticleCatching a Headless Horseman (or analysis of Trojan.Downloader.1301007.C-Jottix)
Defeating security controls in antivirus and anti-malware systems is a common goal among malware authors. There are many sophisticated techniques and an incredible level of creativity with regard to...
View ArticleVinsula Execution Engine Analysis of Venomous Snake Zero-Day Malware –...
Malware authors frequently seek code-execution methods that not only evade detection by AV software but also cover tracks and remove evidence that could reveal the origins of the malicious code....
View ArticleScripting Bot Malware: No Need to Learn C to Launch a Cyber Attack
T wo weeks ago we came across a piece of malware that turned out to be a full-blown bot—one that is capable of taking full control over a user’s machine, and all encapsulated within less than 3K lines...
View ArticleFacebook-spread Adobe Update Malware Dissected and Source Code Revealed
A week ago security researcher Dancho Danchev published an excellent post - Fake Adobe Flash Player Serving Campaign Utilizes Google Hosting/Redirection Infrastructure, Spreads Across Facebook I was...
View ArticleChewBacca – a TOR based POS malware
Point-of-sale terminal software appears to be an easy target in general for many attackers. There have recently been several high profile, and most likely non-coordinated, attacks on different...
View ArticleAnalysis of CryptoLocker Racketeer spread through fake Energy Australia email...
Over the last few months there has been a massive outbreak of the Ransomware CryptoLocker. CryptoLocker is malware that first silently encrypts a user’s files and then requires the user pay a ransom...
View ArticleSayad (Flying Kitten) Infostealer – is this the work of the Iranian Ajax...
Information stealing malware has become increasingly popular among malware authors targeting not just typical end-users, but also specific organizations and states. We have come across an intriguing...
View Article
