From the course: Ethical Hacking: The Complete Malware Analysis Process

Unlock the full course today

Join today to access over 22,400 courses taught by industry experts or purchase this course individually.

Contemporary malware construction

Contemporary malware construction

From the course: Ethical Hacking: The Complete Malware Analysis Process

Start my 1-month free trial

Contemporary malware construction

- [Instructor] In 2017, researchers in the MalwareHunterTeam discovered a new strain of dual DDOS and ransomware malware, which is known as FireCrypt. The FireCrypt ransomware is created with a malware builder dubbed BleedGreen. This uses a command-line application to automate the construction of unique FireCrypt executables. The builder can hide the FireCrypt executable using a PDF or DOC icon and make small changes to the binary file to make detection difficult. When activated on a target, the ransomware first kills the Task Manager process and then starts encrypting user files with AES-256 encryption, adding the FireCrypt extension to the names. There's also a malware builder for Android, known as the Trojan Development Kit, or TDK. In 2017, Symantec published a report on the TDK, which indicated it was readily available on Chinese websites. The kit runs as an app on an Android phone. The user completes the customization details for their trojan using the Chinese app and then hits…

Contents