2023-02-15 01:52
[written with ChatGPT] In this post, we will introduce you to PlantUML, a text-based tool for creating UML diagrams. With PlantUML, we can write code that represents… Read More
Blog Directory > Technology Blogs > Kaiju Labs technology Blog >
Kaiju Labs Blog
kaijulabs.blogspot.com
Tags:
malware
software
cleaner software
chatgpt
gameover zeus botnet
php script
samsam ransomware
uml diagrams
emotet
keylogger
Attention all cybersecurity enthusiasts! Are you interested in staying up-to-date on the latest emerging threats and learning tips to keep your online activities safe? Look no further than our malware analysis blog! We offer in-depth insights into notorious threats like the Emotet and Zeus botnets, as well as a wealth of valuable information and resources on how to protect yourself and your systems from a variety of cyber threats. Whether you're a seasoned security professional or just starting to learn about online safety, our blog has something for everyone. So come check us out and stay ahead of the curve on all things cybersecurity!
2023-01-26 00:07
[Written with ChatGPT]https://deepai.org Welcome to my blog post on the Phorpiex worm. Worms are malicious software programs that are designed to replicate themselve… Read More
2023-01-24 02:01
[Written with ChatGPT] Welcome to my latest blog post. This post is about a discovery I made while browsing https://urlhaus.abuse.ch. In particular, a Discord keylogg… Read More
2023-01-18 00:53
Obfuscation is a technique commonly used to change code so that it is harder to read. It is used as a means of 'protecting' source code so t… Read More
2023-01-12 01:14
[Written with ChatGPT] Welcome to my blog post on converting a Python .py file into an executable .exe program. In this post, I'll be taking you through the process… Read More
2023-01-04 01:18
[the following was written with ChatGPT] Malwarecfg is a tool that helps users identify and analyze malicious Windows executables. It does this by extracting an… Read More
2022-12-27 01:08
[the following paragraphs were written with ChatGPT] The SamSam ransomware has been making headlines in recent years for its targeted attacks on hospitals and compan… Read More
2022-12-23 03:17
The GameOver ZeuS botnet was a highly sophisticated piece of malware that wreaked havoc on the internet for several years. It was first detected in 2011, and quickly became one of th… Read More
2022-12-20 00:20
So I recently found out about ChatGPT and was amazed by how creative it can get with code examples. At first I thought about how hackers could use it to make malware faster, but I also… Read More
2022-12-17 00:36
SpyEye is a trojan that was built in 2009. It has form-grabbing capabilities that allow its controller to steal banking information from an unsuspecting users' browser. It also uses web inje… Read More
2022-12-13 01:36
in march 2017 a cyber threat known as WannaCrypt0r emerged. A researcher from Malwarebytes found a ransomware strain that appeneded .wcry to file names and posted on twitt… Read More
2022-12-01 00:16
I recently encountered a sample of the IcedID banking trojan that appeared in the form of an HTML document. This sample would be received via email and unpacks itself hidden in a .tmp… Read More
2022-11-22 23:27
I recently found a strain of the infamous Petya ransomware and began to look for strings in the executable. I noticed about half the executable was unreadable by cutter. That's when I looked… Read More
2022-11-16 21:52
I recently discovered another malware sharing site https://bazaar.abuse.ch/ that lets researchers upload their samples for anyone to study. I found a sample from a ransomware called Bl… Read More
2022-11-14 01:28
I found a file on https://dasmalwerk.eu/ called Gen:Variant.Razy.11684, but when I opened the file in PEStudio it was renamed to a password stealer. I uploaded the sample to hybri… Read More
2022-11-12 18:22
I recently found a site called https://dasmalwerk.eu/ that allows researchers to download malware samples from each other. I picked up an adware sample that I've never heard of before called… Read More
2022-11-10 21:17
The Rombertik spyware was designed to steal data from a users Chrome or Firefox browser. First publicized by Cisco Talos group in 2015, Rombertik became notorious for having anti… Read More
2022-11-10 02:12
The Mozi botnet has been around since 2019. It continues to infect new devices every day, even over a year after the arrest of its authors. It seems like Mozi is the most prevalent IoT botne… Read More
2022-11-08 15:36
This post is a blog representation of this videohttps://www.youtube.com/watch?v=WubAuz4hPpY&t=378sIn this post, I will go over how to setup QEMU for ARM using a Raspbian Jessie ISO… Read More
2022-11-07 22:56
Over the past several days I recorded some interesting activity on my Conpot Honeypot which simulates an Industrial Control Systems by providing a range of industrial control protocols… Read More
2022-11-05 20:42
I recently have been receiving a bunch of cyberattacks on my Conpot SCADA honeypot which has been listening for about 12 days now. It started with an HTTP request from a host called s7… Read More
2022-11-04 21:17
I've recently found a great replacement for my Windows 10 stock virtual machine for a much better malware analysis VM called Flare-VM from Mandiant, which is available on Github. It's much f… Read More
2022-11-03 18:31
I recently found another malware on urlhaus.com that peaked my interest. It says the sample is from a malware called 'Darkcloud', which I've never heard of before so I was excited to s… Read More
2022-10-29 16:45
I recently found out about a website called urlhaus.com that accepts malicious url domain reports that serve malware to unsuspecting victims. I typed in 'exe' and went to the top of the sear… Read More
2022-10-25 22:09
I recently found a variant of the Mirai botnet on my ssh honeypot. This one seems to use HTTP to try to spread itself to vulnerable routers. It targets Netgear and Huawei routers and s… Read More
2022-10-22 19:24
I recently setup an email honeypot to see what kind of messages I would get. It alerted me to an email that seemed to try to send an email to itself. Maybe it could be testing fake ma… Read More
2022-10-21 18:48
I recently had malware dropped onto my wordpress honeypot. It had an IP address originating from Italy. It dropped a shell file onto my website trying to get an x86 binary running with… Read More
2022-10-20 20:53
I recently found out about a Github project called Octopus that lets security researchers setup honeypots on a Linux machine supporting "ssh, rdp, ldap, ftp, samba, mongodb, redis, and vnc"… Read More
2022-10-19 20:40
This post will show you how to obfuscate Linux binaries using UPX packerfirst go tohttps://github.com/upx/upx/releases/tag/v3.96and download the latest releasemy version after unz… Read More
2022-10-19 03:15
Attack log of ssh worm leaving a linkIt goes to a web pageafter seeing my honeypot downloaded the files from the attacker I tried to read one of the tty* filesit runs on my machine&nbs&hell…Read More
Subscribe to Kaiju Labs
Get updates delivered right to your inbox!