Pinkslipbot banking Trojan exploiting infected machines as control servers
http://securityaffairs.co/wordpress/...ng-trojan.html
Pinkslipbot banking Trojan is a banking Trojan that uses a complicated multistage proxy for HTTPS-based control server communication. Security researchers at McAfee Labs have spotted a new strain of the Pinkslipbot banking malware (also known as QakBot/QBot)
!!! Zero-day Skype flaw causes crashes, remote code execution (CVE-2017-9948) -
NOTE
All of the running information on the Russian deliberate cyber attack on Ukraine is being threaded on the Russian propaganda thread....as it is in fact a Russian targeted cyber attack...especially when one "sees" the control servers sitting deep inside Russia.....
Useful analyses on Petya, the camouflaged wiper targeting Ukraine
https://tisiphone.net/2017/06/28/why...uld-worry-too/ … https://medium.com/@thegrugq/pnyetya...47c-1498684536 … https://securelist.com/expetrpetyano...somware/78902/ …
Puppet Strings - Dirty Secret for Free Windows Ring 0 Code Execution https://zerosum0x0.blogspot.com/2017...-for-free.html …
Petya’s kill-chain diagram in Windows 10. Device Guard, Credential Guard, UEFI Secure Boot, AppLocker, KASLR, HALNX
https://blogs.technet.microsoft.com/...form=hootsuite …
ThreadContinue - Reflective Injection Using SetThreadContext() and NtContinue()
https://zerosum0x0.blogspot.com/2017...injection.html …
One interesting item is the limited execution time of 60 minutes.Originally Posted by OUTLAW 09
I'm not a cyber SME, but I wonder where 60 minutes sits on the continuum?
If on the low end, and assuming it was done so intentionally, does that mean this might have been meant as both an intentional attack(not ransomware) on Ukraine as well as a message NATO/EU/US unlikely to draw a direct cyber counterattack?
To me, if the 60 minute execution time is quite short, then it would seem to be designed to burn out like digital Ebola with a limited incubation period, instead of lingering like the Plague.
Posting Permissions
Reply With Quote
Bookmarks