Posted by Nate Theis on Feb 22
Hmm, interesting AV evasion technique: Seemingly legitimate app, but thedownload page gives both a malicious DLL and the main executable, the main
executable uses LoadLibrary insecurely.
Feeds
133122 items (0 unread) in 27 feeds
-
1337day (was: Inj3ct0r, 1337db)
-
OSVDB Vulnerabilities
-
Exploit-DB
-
SecurityFocus Vulnerabilities
-
Bugtraq
-
Full Disclosure
-
XSSed
-
Packet Storm Security Headlines
-
-
-
-
-
-
Sophos security news
-
-
Penetration Testing
-
SecuriTeam
-
BackTrack Linux Forums
-
Threatpost
-
SecDocs
-
carnal0wnage.attackresearch.com
-
Carnal0wnage
-
-
Darknet
-
The Exploitant
-
Hack a Day
-
Wirevolution
«
Expand/Collapse
Full Disclosure
-
Re: Downloads Folder: A Binary Planting Minefield
Posted: February 22nd, 2012, 4:50pm PST
Tags:
download page gives both a malicious DLL and the main executable, the main
executable uses LoadLibrary insecurely.