all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Visual Examples of Code Injection, (Thu, Nov 9th)

Add to bookmarks
Nov. 9, 2023, 9:35 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Code injection techniques (T1055 from MITRE[1]) is a common technique these days. It’s a nice way for an attacker to hide malicious code into a legit process. A deviation of this technique is called “Process Hollowing”[2] where code of the legit suspended process is wiped and replaced by malicious code. Code injection is performed by calling Microsoft API calls like: VirtualAllocEx(), NtUnmapViewOfSecrio(), WriteProcessMemory(), … (they are many others available)


Article Link: https://isc.sans.edu/diary/rss/30388


1 post - 1 participant


Read full topic

attacker called code code injection hide hollowing injection legit malicious mitre nice nov process process hollowing techniques

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Managed Detection and Response in 2023 26 minutes ago | malware.news
analysis and response center collecting +26
Dynamic Link Dazzle: Unveiling the Dark Side of DLLs 56 minutes ago | malware.news
application apt apt groups chinese +20
KapeKa Backdoor: Russian Threat Actor Group’s Recent Attacks an hour ago | malware.news
actor attacks backdoor cyber +16
Why space exploration is important for Earth and its future: Q&A with David Eicher an hour ago | malware.news
amp article benefits beyond +18
ISC Stormcast For Tuesday, April 30th, 2024 https://isc.sans.edu/podcastdetail/8960, (Tue, Apr 30th) 6 hours ago | malware.news
topic
Report on the First Scientific Experiment to Test the Impact of Generative AI on Complex, … 6 hours ago | malware.news
boston business consultants consulting +16
2023 Activities Summary of SectorD groups (KOR) 6 hours ago | malware.news
Relaying Kerberos Authentication from DCOM OXID Resolving 8 hours ago | malware.news
access active directory adcs administrator +21
SecretCalls Spotlight: A Formidable App of Notorious Korean Financial Fraudster (Part 1) 9 hours ago | malware.news
app article blog financial +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs