Analyzing Furtim: Malware that Avoids Mass-Infection

Windows, Malware, Furtim, enSilo Breaking Malware, enSilo Corporate and Product

Overview

Recently we came across a new malware strain, first discovered by @hFireF0X, and at point of

Read More

ArdBot: A Malware Under Construction

Windows, Malware, ArdBot, enSilo Breaking Malware, enSilo Corporate and Product

Recently we came across a new sample of the ArdBot malware, appearing on kernelmode, credited to R136a1.

Read More

Sedating the Watchdog: Abusing Security Products to Bypass Mitigations

tools, av, Vulnerabilities, anti-virus, avulnerabilitychecker, Windows, enSilo Breaking Malware, enSilo Corporate and Product

TL;DR: Design issues in various security products, such as anti-virus, make it significantly easier for

Read More

A Technical Breakdown of ModPOS

Windows XP, Windows, Web Malware, POS malware, Malware, ModPOS, enSilo Breaking Malware, enSilo Corporate and Product

ModPOS is the latest in the string of POS malware that’s making the news. As its family name implies, this

Read More

Moker, Part 2: Capabilities

Windows, Web Malware, Malware, APT, Moker, RAT, enSilo Breaking Malware, enSilo Corporate and Product

A few days ago, we published a blog entry on an advanced malware called Moker, and discussed the different

Read More

Moker, Part 1: Dissecting a New APT Under the Microscope

Windows, Web Malware, Malware, APT, Moker, RAT, enSilo Breaking Malware, enSilo Corporate and Product

Recently, we came across Moker, an advanced malware residing in a sensitive network of a customer. Since

Read More

Class Dismissed: 4 Use-After-Free Vulnerabilities in Windows

Vulnerabilities, Windows, vulnerability, exploit, enSilo Breaking Malware, enSilo Corporate and Product

Introduction

Today, Microsoft released their latest Patch Tuesday. This Patch includes a fix for

Read More

“Selfie”: A Tool to Unpack Self-Modifying Code using DynamoRIO

tools, Windows, Malware, enSilo Breaking Malware, enSilo Corporate and Product, Endpoint Protection

TL;DR: In this blog post we describe Selfie, a tool we have developed that automates finding the OEP for a

Read More

Vulnerability Patching: Learning from AVG on Doing it Right.

Vulnerabilities, Windows, enSilo Breaking Malware, enSilo Corporate and Product

Introduction

As part of our research, we analyze the intricate relationship between Anti-Virus and

Read More

One Bit To Rule Them All: Bypassing Windows 10 Protections Using a Single Bit

Windows, Windows 10, vulnerability, exploit, enSilo Breaking Malware, enSilo Corporate and Product

Introduction

Today, Microsoft released their latest Patch Tuesday. This Patch includes a fix for

Read More