Taking Apart the Energizer Trojan 55
iago-vL writes "Researchers at SkullSecurity have written a tutorial on how they reverse engineered the Energizer Trojan and generated an Nmap probe to remotely detect infections. The Energizer Trojan is a great educational tool because its inner workings are very simplistic, and it makes minimal efforts to hide itself or conceal its purpose; it even lists what appears to be the author's name — 'liuhong' — in the source! The article provides an introduction to malware analysis, from infecting a test machine to debugging and disassembling the Trojan to writing the actual probe."
Re:Multi-page article (Score:5, Insightful)
Re:Multi-page article (Score:5, Insightful)
It must suck to have to start disliking stuff just because some plebs found out about it.
Re:How About A Little Restraint? (Score:3, Insightful)
There've been a few bait-titled posts like this the past week.
They're softening us up for 4/1.