Tagged: archives

The Rebirth of Dofoil 0

The Rebirth of Dofoil

Dofoil, also known as Smoke Loader, is a modularized botnet that has existed for a few years. Since 2013, we have not received any new variants of this bot and the command-and-control (C&C) servers of its previous variants are no longer accessibl…

Inside Hack.Lu 2014 0

Inside Hack.Lu 2014

The main issue with Hack.Lu this year was that there were too many interesting things in parallel: interesting talks, workshops, CTF… :) Talks 19 year old Filippo Valsorda talked about the setup of https://filippo.io/Heartbleed/ (heartbleed test…

211G1 – An Update to Backoff’s ROM 0

211G1 – An Update to Backoff’s ROM

On October 28, 2014, we encountered an even newer version of the Backoff point-of-sale (PoS) malware which we are detecting as W32/Backoff.C!tr.spy. This newest version, with version name 211G1, was compiled close to a month after its predecessor ROM…