all InfoSec news
[SANS ISC] Malicious Code Can Be Anywhere
/dev/random blog.rootshell.be
Today, I published the following diary on isc.sans.edu: “Malicious Code Can Be Anywhere“: My Python hunting rules reported some interesting/suspicious files. The files are named with a “.ma” extension. Some of them have very low VT scores. For example, the one with a SHA256 dc16115d165a8692e6f3186afd28694ddf2efe7fd3e673bd90690f2ae7d59136 has a score of 15/59.
The post [SANS ISC] Malicious Code Can Be Anywhere appeared first on /dev/random.
code edu extension files hunting hunting rules isc low malicious malware python rules sans sans.edu sans internet storm center sans isc score sha256