reverse engineering – Computer Security Articles

5 tips for building an effective security operations center (SOC)

December 13, 2019 admin Business, Endpoint Protection, incident responder, incident response plan, irp, malware identification, managed service provider, MSP, reverse engineering, security analyst, security operations center, security operations centers, security orchestration, siem solution, SOC, SOC team, socs, threat hunter, threat hunting

Credit to Author: Gilad Maayan| Date: Fri, 13 Dec 2019 16:00:00 +0000

A security operations center (SOC) can significantly improve an organization’s security posture, but it’s not a perfect solution and can be challenging to implement. Read on to learn how to clear hurdles and build an effective SOC team.

Categories:

Business

Tags: Endpoint Protection incident responder incident response plan IRP malware identification managed service provider MSP reverse engineering security analyst security operations center security operations centers security orchestration SIEM solution SOC SOC team SOCs threat hunter threat hunting

MalwareBytes Security

Hidden Bee: Let’s go down the rabbit hole

May 31, 2019 admin exploit kits, Exploits, hidden bee, loader, mellifera, reverse engineering, security research, Threat analysis, Underminer, Underminer EK

Credit to Author: hasherezade| Date: Fri, 31 May 2019 17:32:57 +0000

The complex and sophisticated custom malware, Hidden Bee, is a Chinese cryptominer that recently released an updated sample. We unpack the sample to look at the functionality of its loader and compare it against earlier versions.

Categories:

Threat analysis

Tags: exploit kits exploits hidden bee loader mellifera reverse engineering security research Underminer Underminer EK

(Read more…)

The post Hidden Bee: Let’s go down the rabbit hole appeared first on Malwarebytes Labs.

MalwareBytes Security

Reversing malware in a custom format: Hidden Bee elements

August 30, 2018 admin custom malware, hidden bee, hidden bee miner, malware, payload, reverse engineering, reversing malware, Threat analysis

Credit to Author: hasherezade| Date: Thu, 30 Aug 2018 15:41:34 +0000

When we recently analyzed payloads related to Hidden Bee (dropped by the Underminer EK), we noticed something unusual. After reversing the malware, we discovered that its authors actually created their own executable format. Follow our step-by-step analysis for a closer look.

Categories:

Tags: custom malware hidden bee hidden bee miner payload reverse engineering reversing malware