Author Topic: Fresh Malware with No Known Family Discovered in Targeted Attack  (Read 91 times)

0 Members and 1 Guest are viewing this topic.

Offline Gilbert

  • Updates Moderator
  • *
  • Posts: 31721
Fresh Malware with No Known Family Discovered in Targeted Attack
« Reply #1 on: May 09, 2017, 09:25:47 PM »
Fresh Malware with No Known Family Discovered in Targeted Attack
9 May 2017, 8:57 pm

A new freshly compiled piece of malicious code was discovered in the wild and the security company that found it can't even place it in a known malware family. Cylance named it the Infostealer Paipeu. 

Security company Cylance recently discovered such a sample after one of its prevention products quarantined a threat in the System32 directory on a customer's endpoint. 

"The location of the file, the recent compile date, and the lack of similar files on known malware repositories combined to flag this sample as something we should take a deeper look at it. 

The sample, it seems, performs a straight call back to a Korean IP address. Once the malware connected to a fake server, researchers were able to view a HTTP POST over port 443. "The entire HTTP header is hardcoded as a single string and only the POST data changes. After the POST and la... (read more)

Source: Softpedia News / Security

>> To obtain the full Softpedia Security News article, click the link in the first post line <<

 


Except where otherwise stated, all content, graphics, banners and images included © 2006 - 2018 Smokey Services™ -- All rights reserved
Design board graphics, banners and images by DSTM & PseFrank

This site does not store profiling-, tracking-, third-party and/or any other non-essential cookie(s) on client computers and is fully compliant with the EU ePrivacy Directive
Smokey's does not use any Web Analytics/Analysis Service, and also does not use any browser fingerprinting techniques



Smokey's also provides free fully qualified Log / Malware Analysis & Removal Help and System Health Checks