AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > OS, Software, Firmware, and BIOS


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 27th July, 2015, 06:44 PM
trodas's Avatar
Member
 
Join Date: January 2005
Location: Czech republic
Posts: 131
Send a message via ICQ to trodas Send a message via AIM to trodas Send a message via MSN to trodas

Exclamation HackingTeam malware detection

Is your computer infected by some of the HackingTeam tools? You can find out now!

http://s30.postimg.org/qdhayur35/Mil...am_removal.png

Rook Security released their tool called Milano, witch are sharing freely, scans for the presence of files associated with the recent Hacking Team breach. For this first iteration of the tool, we they conducted analysis on 93 Windows binaries released from the Hacked Team breach. These files were specific to the projects found on the Hacked Team git projects.

They are continuing to review the remaining files from the 400Gb and will provide more .ioc files as more information is available.

Milano can scan to find Hacking Team associated files in two different ways:

Quick scan: This mode scans for files by filename. If a filename matches, it then checks if file’s computed hash matches the hash from the Hacking-Team-associated file. This approach is not comprehensive, but it is an OK starting point for detection. It is much faster than the deep scan approach.

Deep scan: This approach checks all files (via their computed hash) against all md5s from Hacking-Team-associated files.

You can grab the tool there, unpack and run (opens shell):
https://www.rooksecurity.com/wp-cont...ackage_1.1.zip

For possible future updates, check there:
https://www.rooksecurity.com/hacking...ction-utility/
__________________
"It is dangerous to be right in matters on which the established authorities are wrong." - Voltaire
"I believe that all the people who stand to profit by a war and who help provoke it should be shot on the first day it starts..." - Hemingway my config - my caps
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 29th July, 2015, 03:44 AM
cloasters's Avatar
Asst. BBS Administrator
 
Join Date: September 2001
Location: Location, Location
Posts: 21,871

Much thanks, trodas! My understanding was that the gggreat people at Hacking Team were only after important targets. I sure don't think that I qualify. I hope!
__________________
When the world will be better.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 30th July, 2015, 02:01 PM
trodas's Avatar
Member
 
Join Date: January 2005
Location: Czech republic
Posts: 131
Send a message via ICQ to trodas Send a message via AIM to trodas Send a message via MSN to trodas

I checked and I did not... But supporting oppressive goverments is very bad move and who do it, should be punished for such dastardly actions. It also raise several questions, as we learned that several Czech universities cooperated on the hacking attempts, out police asked for exploits for many normal servers, etc.

It is good to know that these people did not real 1984 as warning, but as guide.
__________________
"It is dangerous to be right in matters on which the established authorities are wrong." - Voltaire
"I believe that all the people who stand to profit by a war and who help provoke it should be shot on the first day it starts..." - Hemingway my config - my caps
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 31st July, 2015, 03:33 AM
Gizmo's Avatar
Chief BBS Administrator
BassTeroids Champion, Global Player Champion, Aim & Fire Champion, Puzzle Maniax Champion, Othello Champion, Canyon Glider Champion, Unicycle Challenge Champion, YetiSports 9: Final Spit Champion, Zed Champion
 
Join Date: May 2003
Location: Webb City, Mo
Posts: 16,178
Send a message via ICQ to Gizmo Send a message via AIM to Gizmo Send a message via MSN to Gizmo Send a message via Yahoo to Gizmo Send a message via Skype™ to Gizmo

Quote:
Originally Posted by trodas View Post
out police asked for exploits for many normal servers, etc.
Ah, so they've been taking lessons from our NSA then?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 1st August, 2015, 03:23 AM
cloasters's Avatar
Asst. BBS Administrator
 
Join Date: September 2001
Location: Location, Location
Posts: 21,871

Don't you love them thiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii iiiiiiiiiiiiiiiiiiiiiis much? I try and I try and I try but I just can't.
__________________
When the world will be better.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #6 (permalink)  
Old 18th September, 2015, 11:43 PM
trodas's Avatar
Member
 
Join Date: January 2005
Location: Czech republic
Posts: 131
Send a message via ICQ to trodas Send a message via AIM to trodas Send a message via MSN to trodas

Well, I believe this guy sum it up best - "Consider yoursef fired!"

https://www.youtube.com/watch?v=CroiMURk8SU
__________________
"It is dangerous to be right in matters on which the established authorities are wrong." - Voltaire
"I believe that all the people who stand to profit by a war and who help provoke it should be shot on the first day it starts..." - Hemingway my config - my caps
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #7 (permalink)  
Old 19th September, 2015, 04:55 AM
cloasters's Avatar
Asst. BBS Administrator
 
Join Date: September 2001
Location: Location, Location
Posts: 21,871

"You're going to choose which side of history you're gonna be on." It seems to me that they already made their choice as clear as crystal.


May you live in interesting times.
__________________
When the world will be better.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #8 (permalink)  
Old 21st September, 2015, 07:36 PM
Gizmo's Avatar
Chief BBS Administrator
BassTeroids Champion, Global Player Champion, Aim & Fire Champion, Puzzle Maniax Champion, Othello Champion, Canyon Glider Champion, Unicycle Challenge Champion, YetiSports 9: Final Spit Champion, Zed Champion
 
Join Date: May 2003
Location: Webb City, Mo
Posts: 16,178
Send a message via ICQ to Gizmo Send a message via AIM to Gizmo Send a message via MSN to Gizmo Send a message via Yahoo to Gizmo Send a message via Skype™ to Gizmo

If there's one thing that's become clear to me over the years, it's that almost NOTHING is as clear as it first appears.

Not trying to let the NSA folks off the hook mind you, just sayin'.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #9 (permalink)  
Old 22nd September, 2015, 03:55 AM
cloasters's Avatar
Asst. BBS Administrator
 
Join Date: September 2001
Location: Location, Location
Posts: 21,871

Absolutely, if I was a bit more of an idiot things would be instantly clear forever.
__________________
When the world will be better.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
EPoX HDD detection ? vampiremind EPoX MotherBoards 1 22nd July, 2010 04:13 PM
How to stop monitor detection? trodas OS, Software, Firmware, and BIOS 4 11th May, 2006 08:28 PM
ide detection problem kingdomwinds EPoX MotherBoards 6 31st July, 2005 06:41 PM
Trouble with HD and Cd-Rom detection. Chesso General Hardware Discussion 2 26th February, 2005 06:34 AM
EP BX-3 SD RAM detection DiX EPoX MotherBoards 11 13th February, 2003 03:30 PM


All times are GMT +1. The time now is 05:57 AM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0