Lastline Labs Blog

qkG: Simple Malware, Tricky Ransomware

Posted by Oleg Boyarchuk and Stefano Ortolani ON Jan 23, 2018

By Oleg Boyarchuk and Stefano Ortolani Introduction When ransomware behavior is clearly exhibited, it is relatively easy for a sandbox or a...

When Scriptlets Attack: The Moniker

Posted by Alexander Sevtsov and Stefano Ortolani ON Jan 11, 2018

Authored by: Alexander Sevtsov Edited by: Stefano Ortolani In the previous article, we have described an attack that makes use of a...

Tyupkin ATM Malware: Take The Money Now Or Never!

Posted by Alexander Sevtsov ON Dec 13, 2017

A Sandbox is a dynamic file analysis system that allows a researcher to analyze the behavior of potentially malicious code...

When Scriptlets Attack: Excel’s Alternative to DDE Code Execution

Posted by David Wells ON Dec 7, 2017

We've recently discovered a malicious Office Excel file that appeared to have the ability to download and execute malware. Examining...

Intelligently Detect Network Compromises Featured

From Trapping to Hunting: Intelligently Analyzing Anomalies to Detect Network Compromises

Posted by Giovanni Vigna ON Oct 17, 2017

Breach Detection Systems (BDS) trap attacks that display sufficient evidence of a possible breach, but are at risk of false...

Uncovering Nation-Specific, Targeted Attacks ( . . . without Knowing Korean)

Posted by Alexander Sevtsov ON Sep 26, 2017

Authored by: Alexander Sevtsov Phishing emails with suspicious attachments are one of the most popular malware delivery vectors today. These attachments...

When Malware is Packing Heat

Posted by Giovanni Vigna ON Sep 12, 2017

Executable compression, aka “packing,” is a means of compressing an executable file and combining the compressed data with decompression code...

Malware Evasion Techniques: Same Wolf – Different Clothing

Posted by Lastline ON Aug 30, 2017

Malware continues to evolve and to fool most sandboxes. It will frequently take an alternate approach to accomplish an old...

Hacking and Malware Analysis Have More In Common Than You Think

Posted by Giovanni Vigna ON Aug 15, 2017

One would be surprised to find how much hacking and malware analysis have in common. On the surface, they seem like...

Ransomware Network Communication [Part 3]

Posted by Alexander Sevtsov ON Jul 14, 2017

[Ransomware Series Part 3] Authored by: Alexander Sevtsov This is the third installment of a multipart series on ransomware. While this segment...

Lastline Labs Blog

qkG: Simple Malware, Tricky Ransomware

When Scriptlets Attack: The Moniker

Tyupkin ATM Malware: Take The Money Now Or Never!

When Scriptlets Attack: Excel’s Alternative to DDE Code Execution

From Trapping to Hunting: Intelligently Analyzing Anomalies to Detect Network Compromises

Uncovering Nation-Specific, Targeted Attacks ( . . . without Knowing Korean)

When Malware is Packing Heat

Malware Evasion Techniques: Same Wolf – Different Clothing

Hacking and Malware Analysis Have More In Common Than You Think

Ransomware Network Communication [Part 3]

Lastline to be Acquired by VMware

The Importance of Security Software Integrations and How They Influence Purchase Decisions

Evolution of Excel 4.0 Macro Weaponization

LATEST PRESS RELEASES

Lastline Boosts SOC Efficiency by 100%, Effectively Doubling Productivity of SOC Teams

MEDIA MENTIONS

Coronavirus-Themed Phishing Fears Largely Overblown, Researchers Say

FROM THE BLOG

Lastline to be Acquired by VMware