*BANNED (trojan spreading with no disclaimer)*
Printable View
*BANNED (trojan spreading with no disclaimer)*
[QUOTE=_net******_;*8475][url]http://www.rogepost.com/n/**84*86748[/url] control t ip[/QUOTE]
Out of boredom I ran a quick [B]grep -UGa .com webcammax.exe[/B], which gave me these lines:
Contact: [email]support@poisonivy-rat.com[/email]
[url]http://swerat.com[/url]
[url]http://www.poisonivy-rat.com[/url]
[url]http://chasenet.org[/url]
Don't you people usually use packing tools on malicious software to stop these revealing text strings from remaining?
[QUOTE=mike*0*;*848*]Out of boredom I ran a quick [B]grep -UGa .com webcammax.exe[/B], which gave me these lines:
Contact: [email]support@poisonivy-rat.com[/email]
[url]http://swerat.com[/url]
[url]http://www.poisonivy-rat.com[/url]
[url]http://chasenet.org[/url]
Don't you people usually use packing tools on malicious software to stop these revealing text strings from remaining?[/QUOTE]
Thanks for the info, the user has been banned.