mcrblg-header-image

search

Tag: #Informaton Security


Neurevt bot Malware Analysis | BlueKaizen

Posted by in Uncategorized

Upon installation, the  Neurevt bot injects itself into almost all user processes to take over the whole system. Moreover, it utilizes a mechanism that makes use of Windows messages and the registry to coordinate those injected codes. The bot communicates with its C&C server through HTTP requests. Different parts of the communication data are encrypted (mostly with RC4). Many components cover a large number of the most popular malicious functionalities, including downloading malware, DDoS attacks, and credentials stealing.


close

Hi, guest!

settings

menu