Monthly Archives: December 2010

SpiderMonkey 1.8.5 for Windows

Get a Windows binary build of Mozilla’s JavaScript 1.8.5 engine here:¬†spidermonkey-1.8.5.zip The source code was downloaded from Mozilla’s Mercurial repository via http://hg.mozilla.org/mozilla-central/ on 2010-11-24. This is based off of the latest successful build “mozilla-central” after Mozilla Firefox 4.0b7 was released. … Continue reading

Posted in Tools | Tagged , , , , , , , | Comments Off on SpiderMonkey 1.8.5 for Windows

Deobfuscating Tricks

Deobfuscating malicious Javascript can be tricky at times. Luckily, there are several techniques researchers can use to decode Javascript that has been purposefully obscured to hide its real intentions. Here are the common techniques I use to deobfuscate malicious scripts … Continue reading

Posted in Malscript | Tagged , , , | Comments Off on Deobfuscating Tricks

Malicious Javascript Analysis II

This obfuscated Javascript came from a new, unknown exploit kit. There’s a large chunk of code that looks pretty scary! We can see a couple of things from this partial look at the script. It appears to be using AJAX … Continue reading

Posted in Malscript | Tagged , , | Comments Off on Malicious Javascript Analysis II

Malvertisement Leads to Dragon Pack

Dragon Pack is a new exploit kit that has hit the hacker scene. It sports only a handful of exploits but they are arguably the most successful ones. If nothing else, this pack looks very cool. Anyway, let’s take a … Continue reading

Posted in Exploit Packs, Malscript | Tagged , | Comments Off on Malvertisement Leads to Dragon Pack