Skip navigation.
Home

What are the BOT elements here

A lot of press is going around the discovery of the SymbOS/Yxe threat, I have just uploaded a sample of the threat to Offensive Computing, in hopes that fellow researchers here will help me identify the BOT elements of the threat.

If your looking for a challenge this is it. The File is the EPOC based executable, not the SISX package, thus you should be able to get this decompiled in IDA right away without having to do any extractions.

MD5 of the sample 24D40DD68DCC17F9DAB29C9CFE3529A0.

Note: Just uploaded it so maybe a little bit before it gets uploaded.

Link to make it easier

http://www.offensivecomputing.net/?q=ocsearch&ocq=24d40dd68dcc17f9dab29c9cfe3529a0