Botconf Author Listing

Alexander Eremin


Last known affiliation: ThreatFabric

Date: 2019-12-05
Bot with Rootkit: Update and Mine!
Alexander Eremin 🗣 | Alexey Shulmin 🗣

Abstract (click to view)

In June of 2019 we got an interesting sample. When analyzing the activity of this sample, we noticed that for some reason it downloaded a legitimate Microsoft update KB3033929 from its own CnC and installed it on infected machine. And things got more interesting when we began to dig deeper…

Slides Icon
PDF
Scroll to Top