SANS ISC

[SANS ISC Diary] Maxmind.com (Ab)used As Anti-Analysis Technique

I published the following diary on isc.sans.org: “Maxmind.com (Ab)used As Anti-Analysis Technique“.

A long time ago I wrote a diary[1] about malware samples which use online geolocalization services. Such services are used to target only specific victims. If the malware detects that it is executed from a specific area, it just stops. This has been seen in Russian malware’s which did not infect people located in the same area … [Read more]

 

4 comments

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.