Analysing TA551/Shathak Malspam With Binary Refinery
这篇博文展示了开源框架“binary refinery™”如何提取复杂的 TA551 恶意垃圾邮件的下载 URL。
The Domain Generation Algorithms of SharkBot
style="text-indent: 2em; "SharkBot uses a DGA for communication, which was changed several times during the development of SharkBot. This blogpost shows four versions of the DGA, and their differences.
style="text-indent: 2em; "This very short post shows the Domain Generation Algorithm of BumbleBee, a loader for Cobalt Strike or other malware.
A BazarLoader DGA that Breaks Down in the Summer
style="text-indent: 2em; "Domain generation algorithms are relatively straightforward to program and usually bug free. Not so the new DGA of BazarLoader, which goes haywire during the summer months.
Next Version of the Bazar Loader DGA
这篇博文展示了 Bazar Loader 的另一种域生成算法。虽然它仍然专门使用 .bazar 顶级域和类似的种子,但算法本身是全新的。
The Defective Domain Generation Algorithm of BazarLoader
这篇博文是关于在一些 BazarLoader 样本中发现的错误域生成算法。 DGA 不仅使用无效的顶级域名,有时还会为二级域名生成无效字符。
The Domain Generation Algorithm of Orchard v3
Orchard 恶意软件使用域生成算法 (DGA),该算法既由当前日期播种,也由比特币创世块的当前余额播种。
Full Control over HTTP Requests Headers in Python
在这篇博文中,我将展示如何删除任何标头、设置它们的顺序、定义它们的大写以及如何发送重复的标头。
Sinkholing the Domain Generation Algorithm of m0yv
style="text-indent: 2em; "Video that shows the DGA of the fileinfector m0yv and results of sinkholing domains for over a year.
