Malware Research

Wild Pointer > Malware Research

02 Oct

Honeypotting for Exchange RCE’s & profit – Exchange Server recent Threats (CVE-20222-41040, CVE-2022-41082)

This will be an updated list of threats being discovered available out there while honeypotting for the new CVE. Part of the new CVE may require auth, and we can actually see here threat actors trying to check for auth-bypass either using old vulnerabilities, e.g: CVE-2021-26855, or...

06 Aug

Anatomy of Ransominer – Uncovering New Ransomware Utilizing WinRAR and XMRig with Auto-Exploit Capabilities

by Barak Sternberg

in Malware Research

Comments

Anatomy of Ransominer Yoav Sakal & Barak Sternberg Intro Nowadays, when ransomware are spreading widely, driving many new incidents and causing damage, we've tackled in our last research to unravel a new malware that tries to win it all - combining ransomware and cryptomining into one. Although the...