Monthly Archives: March 2012

Escalating Java Attacks

If you’re into malware analysis or incident response, I’m sure you’ve come across a number of malicious Java applets lately. And perhaps you’ve noticed some new tactics being employed which are quite clever and probably effective in getting past perimeter … Continue reading

Posted in Exploit Packs | Tagged , , , , , | 1 Comment

Converter v0.3 Released

Here’s another update based on some recent real-world analysis I’ve done as well as some of your requests and feedback. The first thing you’ll notice is that I’ve increased the workspace as requested.    Custom Character Filter Here’s one example … Continue reading

Posted in Tools | Tagged , , | Leave a comment

Chinese Pack Using Dadong’s JSXX VIP Script

Another week, another pack. But this one is using Dadong’s JSXX 0.41 VIP obfuscation script which makes the task of Javascript deobfuscation a more difficult than the others. We’ll get to that in a bit but let’s talk about the … Continue reading

Posted in Exploit Packs, Malscript | Tagged , , , , | 3 Comments