Dropper Archives - /dev/random

[SANS ISC] More Undetected PowerShell Dropper

December 21, 2021 Malware, SANS Internet Storm Center, Security Leave a comment

I published the following diary on isc.sans.edu: “More Undetected PowerShell Dropper“: Last week, I published a diary about a PowerShell backdoor running below the radar with a VT score of 0! This time, it’s a dropper with multiple obfuscation techniques in place. It is also important to mention that the injection technique used is similar

[SANS ISC] Simple Mimikatz & RDPWrapper Dropper

August 23, 2019 Malware, SANS Internet Storm Center, Security Leave a comment

I published the following diary on isc.sans.edu: “Simple Mimikatz & RDPWrapper Dropper“: Letâ€™s review a malware sample that I spotted a few days ago. I found it interesting because it’s not using deep techniques to infect its victims. The initialÂ sample is a malicious VBScript. For a few weeks, I started