Be careful on help files

Posted in February 3, 2010 ¬ 11:02h.paispeNo Comments »

Be careful on help files @ McAfee Labs Blog

“Muster” is a family of backdoor which has been using help files for hiding themselves. The help files or “.hlp” files are data files designed to be viewed with Microsoft WinHelp browser for providing online helps for applications users. Earlier variants of “Muster” drop encoded copies of main backdoor components in filenames with the extension “.hlp”. These “.hlp”files are later decrypted with Microsoft CryptAPI with hardcoded keys and executed by loaders.

securitymcafee

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

February 2010

M T W T F S S

« Jan Mar »

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28
Archives
Categories
- android (1)
- geekish (7)
- linux (6)
- networking (2)
- security (23)
- Uncategorized (1)
- webcast (1)
- windows (1)
Recent Posts
Recent Comments
- Shade on root. i haz it.
- Shade on root. i haz it.
- Florin Ungureanu on instalare joomla
- narcis on root. i haz it.
- paispe on Note to self
Tags
android appsec blue coat certificari compliance comunitate DLP gateway security legis linux mcafee netcat networking os phishing privacy remote access reports SaaS securuty smartphone smtp visibility wan optimization web gateway security windows wireless ZyXEL
Blogroll
14.
- ACTA. fuck this shit.
  […]
- i-am dat de l-am julit
  Din iunie 2010 pana acum, mi-am maltratat telefonul HTC Desire cum am stiut eu mai bine. L-am tinut fara husa, l-am scapat pe piatra / asfalt / gresie / parchet / mocheta si s-a mentinut ca un campion. Azi, in schimb, l-am scapat pe gresie cu display-ul direct in jos, si s-a crapat display-ul. Are […]
- meme pierzanie
  […]
- multumesc.
  Stand eu asa si gandindu-ma la cacatul in care sunt din punct de vedere financiar, mi-am dat seama cat de norocoasa sunt in acelasi timp si ce oameni extraordinari misuna pe langa mine. Pentru ca anul trecut am ars-o idealist si am muncit pe coji de seminte, pana mi-am bagat mintile in cap si am […]
- protest
  Am tot auzit vineri si sambata despre protestul din Piata Universitatii. Nu am tv, asa ca mai mult am citit pe facebook si pe twitter mistouri facute de oamenii internetului. Mai erau si diverse majorete care sustineau din taste, dar nimic concret. Toata faza cu protestul mi-a amintit de o faza in liceu in clasa […]
fit.

February 2010
M	T	W	T	F	S	S
« Jan				Mar »
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28

Be careful on help files

Leave a Reply

Archives

Categories

Recent Posts

Recent Comments

Tags

Blogroll

14.

fit.