Botconf Author Listing

Alexander Eremin

Last known affiliation: ThreatFabric

Date: 2019-12-05
Bot with Rootkit: Update and Mine!
Alexander Eremin 🗣 | Alexey Shulmin 🗣

Abstract (click to view)

In June of 2019 we got an interesting sample. When analyzing the activity of this sample, we noticed that for some reason it downloaded a legitimate Microsoft update KB3033929 from its own CnC and installed it on infected machine. And things got more interesting when we began to dig deeper…

Slides Icon
Scroll to Top