logo
  • About
  • Contact
  • Instant Response
  • Hall of fame
  • COVID-19

Categories

  • Alerts and warnings
  • BU Safe
  • Hit by ransomware?
  • Incident handling
  • News

Noticed a problem?

Report an Incident
–or–

Recent Posts

  • New Zero-Click Hack Targets iOS Users with Stealthy Root-Privilege Malware
  • North Korea’s Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks
  • The rise and fall of ransomware: Insights from Avast’s Q1/2023 Threat Report
  • Kaspersky Says it is Being Targeted By Zero-Click Exploits
  • Software rollout failure led to Devon & Cornwall cops recording zero crime for 3 months

Video

https://www.youtube.com/watch?v=wMsHDH67eb4

RSS NVD Data Feed

  • CVE-2023-2931 (chrome) 30 May 2023
  • CVE-2023-2930 (chrome) 30 May 2023
  • CVE-2023-2932 (chrome) 30 May 2023
  • CVE-2023-2940 (chrome) 30 May 2023
  • CVE-2023-2933 (chrome) 30 May 2023

RSS CERT-EU News Feed

Information

  • Privacy & Cookies Policy

zLoader XLM Update: Macro code and behavior change

Posted on 22 September 2020

From malware.news

Central Loop Mechanism

The decoding part of the central loop mechanism still exists as it did before. It grabs hex characters from elsewhere in the document, decodes them, and writes those strings to new cells. However in this case, the document only runs through two rounds of this decoding.

Read more…

Posted in News

Post navigation

Previous post: Dive Deeper — Analyze real mode binaries like a Pro with Qiling Framework
Next post: State in India Leaves Data From Covid-19 Surveillance Tool Open, Risking Safety for Millions of People Across the Country
BU CERT
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie
Mellon University

Other CERTs

  • National Cyber Security Centre
  • US-CERT
  • FORTHcert
Proudly powered by WordPress | Theme: bu-cert by Nan Jiang.