The Lazy Genius

Security News & Brain Dumps from Xavier Ashe, a Bit9 Client Partner

The keylogger from hell

Posted by Xavier Ashe on August 10, 2005

Ok, we have the latest on this identity theft ring.  And it’s pretty interesting.

that all we found was the cache of data from the thieves — we didn’t
have the actual keylogger that was responsible for it.  We had a
keylogger we had found that was similar and provided us some clues, but
not this specific one that was reporting all this data back.

So we had to find the keylogger.  That entailed trying to actually get a hold of a machine.

Last night, we finally got an infected machine and were able to figure out what’s going on.

Go over to Sunbelt's Blog and see the list of attributes for this keylogger.  It's pretty nasty.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: