all InfoSec news
Banking Trojan Analysis
InfoSec Write-ups - Medium infosecwriteups.com
I recently came across an interesting malicious document that I would like to analyze for you.
The initial scans show us that the document is detected by some big names such as Google, Symantec, Fortinet…
But let's see what we can find if we dig a little deeper!
Running the File command verifies that it is an HTML document.
Upon examination of the initial HTML (stage1) document, we can see that the page immediately executes javascript with onload function.
This …
analysis banking banking trojan big command dig document file find fortinet function google html javascript malicious malware names obfuscation qbot reverse engineering scans symantec trojan