Lastline Labs Blog

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

Posted by ON Feb 19, 2015

We’ve talked a lot about the increasing sophistication of malware and the serious threats it poses. But it’s rare to...

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

Posted by Arunpreet Singh ON Nov 18, 2014

We're very happy that a lot of you are enjoying our research. If you'd like to discuss...

The Malicious 1% of Ads Served

Posted by Giovanni Vigna ON Nov 14, 2014

Last week at IMC Vancouver 2014, cyber-security researcher Apostolis Zarras of Ruhr-University Bochum presented a research paper entitled “The Dark...

Rogue Online Pharmacies Use Fake Security Seals and Content Obfuscation to Deceive Humans and Programs

Posted by Giovanni Vigna ON Sep 17, 2014

New research being presented tomorrow at RAID 2014 demonstrates that just two signals can automatically and effectively detect hundreds of...

A Look at Advanced Targeted Attacks Through the Lense of a Human-Rights NGO, World Uyghur Congress

Posted by Dr. Engin Kirda ON Aug 12, 2014

In my capacity as an academic researcher at Northeastern University, I collaborated with computer scientists Stevens Le Blond, Adina Uritesc...

Exploit Analysis via Process Snapshotting

Posted by Roman Vasilenko ON Jul 29, 2014

In this third post in our blog series on process snapshotting (see previous posts on PlugX and Shiz’ code injection),...

Dissecting Payload Injection Using LLama Process Snapshots

Posted by Roman Vasilenko ON Jun 17, 2014

In our last blog-post on process snapshotting, we showed how process snapshots (or “dumps”) allow bridging the gap between dynamic...

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Posted by Roman Vasilenko ON Jun 5, 2014

Targeted attacks and so-called APTs (advanced persistent threats) come in many forms and colors. Very often, in-house malware analysis teams...

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Posted by Clemens Kolbitsch ON May 30, 2014

Every AV I've tested is helpless against Violent Python attacks; the only good defense I've found is...

Detecting Keyloggers on Dynamic Analysis Systems

Posted by Clemens Kolbitsch ON May 28, 2014

Authored by: Kevin Hamacher, Dario Filho, Clemens Kolbitsch One notorious functionality present in many variants of today’s advanced malware is the ability...

Lastline Labs Blog

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

The Malicious 1% of Ads Served

Rogue Online Pharmacies Use Fake Security Seals and Content Obfuscation to Deceive Humans and Programs

A Look at Advanced Targeted Attacks Through the Lense of a Human-Rights NGO, World Uyghur Congress

Exploit Analysis via Process Snapshotting

Dissecting Payload Injection Using LLama Process Snapshots

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Detecting Keyloggers on Dynamic Analysis Systems

I Hash You: A Simple But Effective Trick to Evade Dynamic Analysis

From Russia(?) with Code

Olympic Destroyer: A new Candidate in South Korea

LATEST PRESS RELEASES

Lastline Breach Defender Named Enterprise Security Cutting Edge Winner in Cyber Defense Magazine’s InfoSec Awards

MEDIA MENTIONS

Ultrasonic Signals Are The Wild West Of Wireless Tech

FROM THE BLOG

RSA Hot Topic — IoT Security and Managing Unknown Devices