Neurevt bot Malware Analysis | BlueKaizen

Upon installation, the  Neurevt bot injects itself into almost all user processes to take over the whole system. Moreover, it utilizes a mechanism that makes use of Windows messages and the registry to coordinate those injected codes. The bot communicates with its C&C server through HTTP requests. Different parts of the communication data are encrypted (mostly with RC4). Many components cover a large number of the most popular malicious functionalities, including downloading malware, DDoS attacks, and credentials stealing.

Read More →

Network Shared Drive Encrypted by CryptoWall?Track Down the Infected PC – Palo Alto

  • How do I determine which CryptoWall-infected PC encrypted all the documents in one of my network-shared drives? I don’t have audit logging enabled on my file server.
  • Although many organizations are working on migrating their document storage to the cloud, most still rely upon individual Microsoft network shares as a document repository for each business department.
Read More →

Malwarebytes Named to Deloitte’s 2015 Technology Fast 500 

Malwarebytes™, the cybersecurity software company founded to prevent and remediate malware for both people and businesses, today announced that it has been named to the No. 186 position on the elite listing of Deloitte’s 2015 Technology Fast 500™, which ranks the 500 fastest growing technology, media, telecommunications, life sciences and clean technology companies in North America.

Read More →

GCHQ and NCA join forces to police dark web

Read More →