eSage Lab - Новости http://www.esagelab.ru/archive.php Новости лаборатории информационной безопасности eSage Lab. en Sat, 04 Feb 2012 22:05:55 +0000 Mon, 03 Aug 2009 20:28:50 +0300 RSS Channel Writer NEW ARTICLES http://www.esagelab.ru/archive.php#item_13 "Bootkits - a new stage of development", (IN)Secure, November 2010
The article provides in-depth analysis of new MBR infectors: Alipop, Mebratix, and Black Internet.
Click here to download the issue

"TDSS botnet – full disclosure. Part II", Hakin9, December 2010
After breaking into the world’s biggest botnet, which was covered in the previous issue of Hakin9, we performed thorough analysis of the botnet’s undercover logic.
Click here to download the issue

"Case study: the Ibank trojan", Virus Bulletin, December 2010
Disclosing the technology behind online banking fraud with an in-depth analysis of the prevalent trojan which targets a wide variety of Russian online banking technologies.
The article is available to Virus Bulletin subscribers.

Q's, feedback and discussion are much appreciated.]]> Wed, 08 Dec 2010 00:00:00 +0000 info@esagelab.ru NEW ARTICLE http://www.esagelab.ru/archive.php#item_12
Download or view the issue (page 18)]]> Tue, 16 Nov 2010 00:00:00 +0000 info@esagelab.ru TDSS REMOVER UPDATE http://www.esagelab.ru/archive.php#item_11 New in this version:
  • Bootkit.TDSS detection and removal
  • x64 operating systems support.
Download here]]> Wed, 08 Sep 2010 00:00:00 +0000 info@esagelab.ru TDSS REMOVER REPORT + UPDATE http://www.esagelab.ru/archive.php#item_10 TDSS Remover usage and TDSS-related activity in the wild will be published in the Virus Bulletin Magazine, May 2010.
2. TDSS Remover version 1.7.5.1 released.
Major updates:
  • successful disinfection of the latest TDSS malware (TDL 3.273)
  • added a tool to decode the rootkit's encrypted file system.
Download here]]> Thu, 29 Apr 2010 00:00:00 +0000 info@esagelab.ru TDSS REMOVER UPDATE http://www.esagelab.ru/archive.php#item_9 TDSS Remover version 1.7 released.
New features since version 1.6:
  • successful disinfection of the latest TDSS malware (TDL3.27)
  • no more VMProtect (smaller file size, less antivirus false positives, happier reversers :))
  • "/uninstall" command line option
  • "Scan at VirusTotal.com" context menu option
  • a panel with links.
Download here]]> Sun, 07 Mar 2010 00:00:00 +0000 info@esagelab.ru